informa
/
Attacks/Breaches
Quick Hits

Care2 Discloses Breach; Company Has Nearly 18 Million Members

Passwords, account information could be at risk
Care2, a website that promotes a variety of political causes and encourages users to take action to support them, reported a hack at the end of the year.

Care2's disclosure reads, in part:

"We have discovered that Care2.com servers were attacked, resulting in a security breach. The hackers were able to access login information for Care2 member accounts. Our team has worked to secure Care2.com against this type of attack from recurring.

"To protect Care2 members we are resetting access to all Care2 accounts. The next time you login to Care2, you will be automatically emailed a new password, which will enable you to access your Care2 account as usual.

"To recover your password, you can also visit our password retrieval form and enter your username or email. Your password will be emailed to you. To secure your privacy, we highly recommend you immediately change your password for any accounts that share the password you previously used on Care2.

"We sincerely apologize for this inconvenience. We take the security of our members very seriously and are taking these extreme steps to reduce the chances of any possible negative consequences."

Care2 has nearly 18 million members, according to the site, but the notification says "a limited number" of accounts were hacked.

Have a comment on this story? Please click "Comment" below. If you'd like to contact Dark Reading's editors directly, send us a message.

Recommended Reading:
Editors' Choice
Kirsten Powell, Senior Manager for Security & Risk Management at Adobe
Joshua Goldfarb, Director of Product Management at F5