Kickstarter has posted to their blog this afternoon with a message nobody ever likes to read. Authorities alerted them that hackers had breached their system, and some of their customer data had been stolen.
No credit card information was taken, but user names, user email addresses, phone numbers, physical addresses and the encrypted version of user passwords were taken. Per Kickstarter:
Actual passwords were not revealed, however it is possible for a malicious person with enough computing power to guess and crack an encrypted password, particularly a weak or obvious one.
Kickstarter says they first learned about the attack and subsequent breach late Wednesday, and were immediately able to shut down the point of attack and start working on analyzing and strengthening the systems. They go on to stress that no credit card data was stolen, as they do not store the full credit card number.
They've posted a FAQ at their blog, which everyone who has used Kickstarter — and that's a pretty big number of people — needs to read. Hit the source link below for that, and any other information they may add in the future.
Source: Kickstarter
