Kickstarter CEO apologises after security breach
Passwords, phone numbers and email addresses targeted in hack attack
Kickstarter CEO Yancey Strickler has apologised after the site fell victim to hackers last week.
Writing in a blog post on Saturday, Mr Strickler admitted that there had been a security breach on Wednesday that had left some user data vulnerable, including encrypted passwords, phone numbers and email addresses. Two accounts showed signs of “unauthorised activity”.
He apologised for the incident, calling it “frustrating and upsetting”, and said his team were “doing everything in our power to prevent this from happening again”.
However, he denied that credit card data had been at risk, and said measures had already been implemented to improve security procedures.
Concerned users immediately began contacting Kickstarter with questions about the breach, prompting Strickler to update his blog post twice, once on Saturday afternoon and again on Sunday.
He moved to reassure users that their credit card data and passwords remained secure, and recommended that people change their account password.
Some wanted to know why Kickstarter waited until Saturday to inform them of the breach, to which Strickler responded that the breach was closed straight away and a response had been issued once the site had investigated the incident.
High profile security breaches continue to alarm users
Kickstarter joins an ever growing list of high profile companies who have fallen victim to hackers in recent months. Since the turn of the year, Bitcoin and Microsoft have both found themselves on the receiving end of security breaches, with the latter attack attributed to the Syrian Electronic Army.
While it is not clear who is responsible for the issues at Kickstarter, the news will be especially disappointing for the company as it overshadows their prize for Best Overall Start Up at the industry’s Crunchie Awards last week.
Since 2005, the crowd funding site has amassed around £586 million for over 56,000 ventures.
Adrian Mursec, head of development at theEword, said: “Security breaches such as this are a tech company’s worst nightmare. Even in cases such as this where the vast majority of user data has not been compromised, it does affect people’s confidence in the brand and it is imperative they make sure it doesn’t happen again.”