Kickstarter hacked. Users advised to change passwords | PCGamesN

Kickstarter hacked. Users advised to change passwords


The Kickstarter team have emailed all their users to say that “hackers had sought and gained unauthorized access to some of our customers' data.” They claim that no credit card details were accessed by the hackers but some personal details such as usernames, email addresses, and encrypted passwords were.

It’s highly recommended you change your password, particularly if you use the same password and username combination elsewhere.

“On Wednesday night, law enforcement officials contacted Kickstarter and alerted us that hackers had sought and gained unauthorized access to some of our customers' data,” Kickstarter wrote in the email to their users. “Upon learning this, we immediately closed the security breach and began strengthening security measures throughout the Kickstarter system.

“No credit card data of any kind was accessed by hackers. There is no evidence of unauthorized activity of any kind on your account.

“While no credit card data was accessed, some information about our customers was. Accessed information included usernames, email addresses, mailing addresses, phone numbers, and encrypted passwords. Actual passwords were not revealed, however it is possible for a malicious person with enough computing power to guess and crack an encrypted password, particularly a weak or obvious one.”

The team have reacted to the infiltration and they say they’re “incredibly sorry that this happened. We set a very high bar for how we serve our community, and this incident is frustrating and upsetting. We have since improved our security procedures and systems in numerous ways, and we will continue to do so in the weeks and months to come. We are working closely with law enforcement, and we are doing everything in our power to prevent this from happening again.”

If you need to change your password then you should head over to Kickstarter and go to your account page.

Sign in to Commentlogin to comment
Dog Pants avatar
Dog Pants Avatar
4 Years ago

I'm always interested to know how these things happen. Good information security should make this very difficult for attackers, but it's also not cheap and not simple. So as a result many companies just don't bother, or they make a half arsed attempt by sending their IT manager on a course. If this is to stop happening there needs to be an incentive to make being hacked less attractive than paying for security.

This happens so often now that I use unique (but memorable) passwords and just leave them. I can't remember everywhere I have accounts so it would be near impossible to change every password every time some company got their slapdash system hacked (incidentally half the time it's nothing more complicated than some social engineering and bad security protocol). I've deleted my card details, if some guy on the darknet wants to see what I've backed then he can fill his boots.