On Tuesday popular news and social media aggregator, Flipboard has disclosed a security breach saying unknown hacker managed to gain access to some of its databases.
In a statement, the company said an unauthorised user has accessed some of its database containing user’s account information and potentially downloaded it.
Hackers have managed to gain access between June 2, 2018, and March 23, 2019, and April 21 – 22, 2019.
The company discovered the breach on April 23, 2019, when their engineering staffs discovered a suspicious activity occurred on April 21-22, 2019.
The databases contained users’ account information such as name, Flipboard username, cryptographically protected password and email address.
Additionally, the database also contained digital tokens used for connecting their Flipboard account to that third-party account.
The company said they did not find any evidence that the hackers have accessed third-party accounts connected user’s Flipboard accounts. As a precaution, they have replaced or deleted all the digital tokens.
The company notified law and enforcement authorities about the incident and has hired a third-party security firm to investigate the issue.
Flipboard as a precautionary measure has reset all users’ passwords. In devices which you are already logged in you can continue using Flipboard but when you log into Flipboard from a new device you will be asked to create a new password.
Flipboard also advises you to change the password of other accounts also if you used the same username and password you created for Flipboard there too.
“To help prevent something like this from happening in the future, we implemented enhanced security measures and continue to look for additional ways to strengthen the security of our systems. For security reasons we are not sharing specific details.”
You may be interested in reading: New GandCrab Ransomware Campaign Targets MySQL Servers on Windows