Adam Greenberg reports:
ReverbNation – an online platform that currently assists more than three million musicians in building their careers – experienced a breach in 2014, and is now notifying an undisclosed number of users and asking them to change their passwords.
According to a ReverbNation statement emailed to SCMagazine.com on Thursday, law enforcement recently notified the company that an individual, who has been identified and charged, may have illegally gained access to customer data.
Read more on SCMagazine.
From their notification, a copy of which was posted on California’s breach tool:
ReverbNation was recently contacted by law enforcement and alerted that an individual had illegally sought to gain unauthorized access to some of our customer’s user data. In January 2014, an individual, who has since been identified and charged, illegally accessed a ReverbNation vendor’s computer systems and ultimately gained unauthorized access to user information contained in a backup of our database. We believe that the date range of the unauthorized access was, at most, January through May 2014. We have since taken additional steps to further secure our system against security breaches. The information included in the database may have included your name, social security number, employer identification number, e-mail address, encrypted password, postal address, phone number, date of birth, and possibly other user information you may have provided to us.