Brady Dale reports:
Another company has been hacked, but this time it’s one that’s working to help creative people support their work and keep the lights on as they do so: Patreon. The company facilitates ongoing, recurring payments to creative people or projects as a way of showing support for what they do.
Jack Conte, CEO of Patreon posted on the company’s blog Wednesday night:
Yesterday I learned that there was unauthorized access to a Patreon database containing user information. Our engineering team has since blocked this access and taken immediate measures to prevent future breaches. I am so sorry to our creators and their patrons for this breach of trust. The Patreon team and I are working especially hard right now to ensure the safety of the community.
There was unauthorized access to registered names, email addresses, posts, and some shipping addresses. Additionally, some billing addresses that were added prior to 2014 were also accessed.
Read more on Observer via @Cyber_War_News
UPDATE: Dan Goodin reports:
Hackers have published almost 15 gigabytes worth of password data, donation records, and source code taken during the recent hack of the Patreon funding website.
The data has been circulating in various online locations and was reposted here [link redacted by DataBreaches.net] by someone who said it wasn’t immediately possible to confirm the authenticity of the data. Security researcher Troy Hunt has since downloaded the archive file, inspected its contents, and concluded that they almost certainly came from Patreon servers. He said the amount and type of data posted by the hackers suggest the breach was more extensive and potentially damaging to users than he previously assumed.
Read more on Ars Technica.