Slashdot Mirror

← Back to Stories (view on slashdot.org)

Patreon Hacked, Personal Data Accessed

Posted by samzenpus on from the protect-ya-neck dept.

AmiMoJo writes: In a blog post Jake Conte, CEO and co-founder of Patreon, writes: "There was unauthorized access to registered names, email addresses, posts, and some shipping addresses. Additionally, some billing addresses that were added prior to 2014 were also accessed. We do not store full credit card numbers on our servers and no credit card numbers were compromised. Although accessed, all passwords, social security numbers and tax form information remain safely encrypted with a 2048-bit RSA key."

2 of 79 comments (clear)

  1. Is the private key secured? by DoofusOfDeath · · Score: 4, Interesting

    If they let someone into their servers by accident, shouldn't we / they also be curious if the private key has been stolen, even if not stored on those servers?

  2. Re:"with a 2048 bit RSA key" by emj · · Score: 3, Interesting

    Don't be so sure, bcrypt was used at Ashley Madison but they still stored transformed and md5 hashed passwords in other places. Leading to this:

    http://cynosureprime.blogspot....