Holy Data Breach, Batman! Hackers Hit Comixology
Not even superheroes are safe from data breaches.
Popular online and mobile digital-comics store Comixology informed its subscribers today (March 6) that "an unauthorized individual" had accessed its database of customers' usernames, email addresses and passwords.
However, the passwords were encrypted, Comixology said in its email to subscribers. Even if the passwords were stolen, they shouldn't be readable so long as the encryption was decent.
Comixology also said it didn't store users' payment information on its own servers, so the intruder wouldn't be able to access Comixology readers' credit-card numbers and other payment data.
Registered Comixology users should have received emails this morning alerting them to the data breach. Any mobile devices on which the app is loaded should have received push notifications.
If you use Comixology, you should change your account password, either via the website or the mobile app. If you use the same username or password — particularly if you use the pair together — anywhere else, you should change those as well.
It's not clear when Comixology first detected the intruder. The email alert said that the unauthorized access was discovered "in the course of a recent review and upgrade of our security infrastructure." But overall, it looks as if Comixology has done everything right, as far as reporting data breaches goes.