As reported first by DataBreaches.net, Click2Mail was investigating allegations that they had had a breach. They have now responded to this site’s inquiry on October 4th with a copy of the statement they are sending out to all customers today, below.
Update: In a follow-up communication, Lee Garvey, President and CEO of Click2Mail, informs this site that slightly more than 200,000 Click2Mail.com registrants will be receiving notifications, which will be sent out in segments, not all at once. Garvey also explained that prior to receiving this site’s email inquiry, they had received an email from a helpful customer who had used a tagged email address and was getting spam. From the description, it sounds like the same former customer who contacted this site to alert us to their suspicions that Click2Mail had been hacked.
Dear Click2Mail Customer:
We are sending this message to you as part of Click2Mail’s commitment to client privacy. We take this commitment very seriously, and it is important to us that you are made fully aware of a potential privacy issue.
We have learned that your personal information, including name, organization name, account mailing address, email address, and phone number may have been compromised. On October 4th, 2019 it was discovered that registered Click2Mail users’ names and email addresses were being used by unknown parties to send multiple spam emails. Technical analysis of our systems detected an intrusion point that was closed that same day. Importantly, Click2Mail does not store any credit card data on our systems.
A professional cybersecurity firm has been retained to conduct a full forensic review and analysis of our IT systems and security protocols. Our goal is to assure that our systems are as secure as possible to protect your personal information and mailing data. As always, we recommend you do not respond to any suspicious emails or click on any active links contained in messages sent by unknown senders.
We are keenly aware of how important your personal information is to you. We regret that this situation has occurred and sincerely apologize. Click2Mail is committed to providing quality mailing services, including the protection of your personal information, and we want to assure you that we have strict policies and procedures to protect your privacy.
If you have any questions, please contact us at 1-866-665-2787.
Sincerely,
Karla Humphrey, Privacy Officer
I am wondering why I received this notice from Click2Mail. I am not, and I never have been, a Click2Mail customer . Why would my information be in their database as user/customer?
You might want to ask them. And if you get an answer, please feel free to let us know what you found out!