Hackers recently broke into Jawbone’s systems and stole “limited user information,” entailing names, email addresses and encrypted password, from an undisclosed number of MyTALK accounts.
Jawbone was able to stop the attack after “several hours” and reset the passwords for all accounts believed to be compromised by the attack. There has been no evidence that the lifted information was used to access the affected accounts.
Either way, owners of affected MyTALK accounts will have to change their account password. It would also be a good idea to update any other site accounts that share the same password. Situations like these are the reason why it’s never a good idea to use the same password for multiple accounts.
For the record, here’s a copy of the email being sent to MyTALK users:
We are writing to inform you of an important security matter. We recently learned that login information for your Jawbone MyTALK account was compromised by an isolated attack on our system.
In the course of this attack, limited user information related to your MyTALK account—specifically your name, email address, and an encrypted version of your password (not the actual letters and numbers in your password)—was compromised. We took immediate action to protect your login information. Based on our investigation to date, we do not believe there has been any unauthorized use of login information or unauthorized access to information in your account.
To help protect your account, we have disabled your old MyTALK password and you can no longer use it. Please reset your MyTALK password by following the instructions below. To help ensure that your information remains safe, we recommend that you do not choose the same password that you use to log in anywhere else, and change your password on other sites where your old MyTALK password is used.
Steps to reset your password:
Copy and paste this URL into your web browser: https://jawbone.com/user/reset
Type in your email address and click the Reset Password button
You will receive an email with instructions to complete the password reset
We sincerely apologize for any inconvenience this may have caused. The security of your personal information is a top priority for us. We take security very seriously and will continue to take steps to keep your account information safe.
If you need help resetting your password, please contact Customer Support by emailing firstname.lastname@example.org.
Don’t miss out on the latest tech news and computer security alerts! Follow us on Twitter at @hyphenet, “Like” us on Facebook or add us to your circle on Google+