AllThingsD’s Kara Swisher is reporting that popular daily deals site LivingSocial “has suffered a massive cyber-attack on its computer systems.” Swisher continues to say that 50 million customers have been affected and will need to reset their passwords.
Here’s a snippet from an internal e-mail sent to LivingSocial employees and apparently obtained by AllThingsD:
The information accessed includes names, email addresses, date of birth for some users, and encrypted passwords — technically ‘hashed’ and ‘salted’ passwords. We never store passwords in plain text.
Two things you should know:
1. * The database that stores customer credit card information was not affected or accessed.
2. * The database that stores merchants’ financial and banking information was not affected or accessed.
So it looks like some personal info may have fallen into the wrong hands, but credit card and other financial details should be safe. If you have a strong enough password, it’ll hopefully be difficult enough to decrypt to avoid any misuse. (Here’s a refresher about how to create strong online passwords.) At any rate, you’ll want to change your current LivingSocial password to something new just in case.
LivingSocial Hacked — More Than 50 Million Customers Impacted [AllThingsD.com]