If you have an account on Createspace then you might want to change your password – and while you’re at it, double check your payment details.
There has been no public discussion yet, but I have read multiple independent reports in several closed Facebook groups from authors who say that someone hacked their CS account.
Many of the reports go something like this:
We got an email from Createspace last night that our payment info had been changed. Fortunately, CreateSpace notifies you if this happens. I fixed the info and changed my password ASAP.
Today’s lesson: Don’t ignore messages like that from CreateSpace. They could be important.
It’s not clear at this time that Createspace has been hacked, and judging by the low number of reports I would say that is unlikely. (There are only a handful of reports, not hundreds or thousands.)
This hack is most likely the result of a hacker piling up all the passwords and emails from other security breaches, and then using them to try to access accounts on Createspace en masse. Most of the passwords won’t work, but if one does then the hacker immediately changes the payment details.
To reiterate: If you have an account on Createspace then you might want to change your password – and while you’re at it, double check your payment details.
While Createspace automatically sends out emails when those details are changed, you do not want to take the chance that the email they sent you got lost. You also don’t want to take the chance that the hacker can access your account today, and is biding their time while waiting for a better opportunity.
Go change your password today, and make sure it is both long enough that it’s hard to guess and easy to remember.
image by The Preiser Project