ComiXology Discovers Security Breach, Wants You to Reset Your Password

Digital ComiXology-Comics-Appcomics distributor comiXology revealed on Thursday that a wide-ranging and worrisome security breach has been discovered during a security review and upgrade. They don't believe that any password, account info, or payment details were compromised, but just to be safe they are asking that you reset your password.

According to the email I got this morning, the blanket password reset is being called a “precautionary measure” by comiXology. They report that an unidentified individual had gained unauthorized access to one of comiXology's databases which contained passwords, emails, and usernames.

Yes, the hacker may have gained access to your email, giving them a good opportunity to phish for your password by sending a fake email. Just to be safe, I went and confirmed this report via comiXology's Twitter accounts. (If the hacker got control of both accounts as well the database info then I just give up; I welcome my new hacker overlord.)

If you have an account with comiXology, go here to reset your password ASAP. I have already changed mine, and I don't even have any payment info attached to the account.

Here's the email comiXology sent out:

Dear Comics Reader,

In the course of a recent review and upgrade of our security infrastructure, we determined that an unauthorized individual accessed a database of ours that contained usernames, email addresses, and cryptographically protected passwords.

Payment account information is not stored on our servers.

Even though we store our passwords in protected form, as a precautionary measure we are requiring all users to change their passwords on the comiXology platform and recommend that you promptly change your password on any other website where you use the same or a similar password. You can reset your comiXology.com password here.

We have taken additional steps to strengthen our security procedures and systems, and we will continue to implement improvements on an ongoing basis.

Please note that we will never ask you for personal or account information in an e-mail, so exercise caution if you receive emails that ask for personal information or direct you to a site where you are asked to provide personal information.

We apologize for the inconvenience. If you have any questions, please contact us by sending an email to [email protected]

Sincerely,

About Nate Hoffelder (11582 Articles)
Nate Hoffelder is the founder and editor of The Digital Reader:"I've been into reading ebooks since forever, but I only got my first ereader in July 2007. Everything quickly spiraled out of control from there. Before I started this blog in January 2010 I covered ebooks, ebook readers, and digital publishing for about 2 years as a part of MobileRead Forums. It's a great community, and being a member is a joy. But I thought I could make something out of how I covered the news for MobileRead, so I started this blog."

1 Comment on ComiXology Discovers Security Breach, Wants You to Reset Your Password

  1. The web site is currently down, 8:00am MST, and the app does not allow you to complete your login. So currently you can’t get to your account.

1 Trackbacks & Pingbacks

  1. Comixology Got a DRM-Stripping Tool Removed from Github - The Digital Reader

Leave a comment

Your email address will not be published.


*