Carbonite appears to be the latest victim of a password reuse attack: the online back-up services provider this week emailed its users with instructions to reset passwords, reports SecurityWeek.
Similar breaches recently have been reported by several other online sites including Facebook, Twitter, GitHub, and GoToMyPC.
Carbonite said it had noticed unauthorized attempts to access accounts and said it fears that in some cases, hackers may have collected additional details of victims apart from their username and password. The company says its platform was not likely compromised, and that user information instead was gleaned from credentials posted online after breaches of other websites, according to the SecurityWeek report.
Meanwhile, some Carbonite users complained that the password-reset emails from the company appeared to look like a phishing campaign. The company confirmed via social media that the emails were legitimate.
Read full report on SecurityWeek.