Twitter, Tumblr, and Pinterest users who have recently contacted customer support for their accounts should be on the lookout for suspicious emails. Zendesk, which provides customer service software for all three social media sites, has reported a security breach.
“We believe that the hacker downloaded email addresses of users who contacted those three customers for support, as well as support email subject lines,” explained the Zendesk team in a blog post on Thursday night. “We notified our affected customers immediately and are working with them to assist in their response.”
Wired posted the full emails that Twitter, Tumblr, and Pinterest subsequently sent to affected users. See the companies’ advice to users below.
- Zendesk’s breach did not result in the exposure of information such as Twitter account passwords. It may, however, have included contact information you provided when submitting a support request such as an email, phone number, or Twitter username.
- We do not believe you need to take any action at this time but wanted to ensure that you were notified of this incident.
- The subject lines of your emails to Tumblr Support may have included the address of your blog which could potentially allow your blog to be unwillingly associated with your email address.
- Any other information included in the subject lines of emails you’ve sent to Tumblr Support may be exposed. We recommend you review any correspondence you’ve addressed to firstname.lastname@example.org, email@example.com, firstname.lastname@example.org,email@example.com, firstname.lastname@example.org, or email@example.com.
- Tumblr will never ask you for your password by email. Emails are easy to fake, and you should be suspicious of unexpected emails you receive.
- Don’t share your password. We will never send you an email asking for your password. If you get an email like this, please let us know right away.
- Beware of suspicious emails. If you get any emails that look like they’re from Pinterest but don’t feel right, please let us know—especially if they include details about your support request.
- Use a strong Pinterest password. Hackers can sometimes guess very short passwords with no letters or symbols. If your password is weak, you can create a new one.
Image by viviamo.