!!

Not Yet Registered?

Welcome to the N Gauge Forum!  We've currently hidden most of the threads due to the vast number of guests contributing in slowing the speed of the forum down.  Please register and login to see the many thousands of posts about our great hobby.  After registering and gaining 10 posts you will be able to sell and buy items on our N'porium.

If you have any problems registering, then please check your spam filter before emailing us.  


Thanks for reading,
The NGF Staff.

Author Topic: Spreadshirt data breach  (Read 420 times)

0 Members and 1 Guest are viewing this topic.

Offline ntpntpntp

  • Trade Count: (0)
  • Full Member
  • ***
  • Posts: 6781
  • Country: gb
    • Awards
Spreadshirt data breach
« on: July 13, 2021, 11:00:43 AM »
I received an email this morning regarding Spreadshirt having suffered a data breach.    As the vast majority of such emails turn out to be scam/phishing I was going to junk it as I couldn't remember ever using this company, however going back through my purchase emails it turns out they were the supplier for the NGF button badges I bought back in 2017.

I don't think I ever created an account with them (I keep a record of all my shopping accounts) and I paid by PayPal, so I don't believe I need to take any action, but I will of course be on the lookout for dodgy spam/phishing emails.

The text of the email is:

"
We are writing to inform you that we were recently the target of an organized cyber-attack that was carried out with considerably vicious criminal intent. The unidentified perpetrators managed to hack into our servers and access data stored there, and they possess the ability to publish this information. Since customer data was also compromised, we’d like to proactively notify you about this incident.

The data accessed includes address information and password hashes saved before 2014. According to our most recent information, your payment data has not been compromised.

If you have an account with us, we highly recommend that you change your password.

Data security has the highest priority for us and we deeply regret that personal data has been accessed as a result of this cyber-attack.

We are currently working closely with external cyber-security experts to ensure that this kind of incident cannot happen again and we have informed the relevant authorities.

If you have any questions, please contact our service team by email: customersupport@spreadshirt.net

Thank you for your understanding. We've set up a help page that we will be updating as soon as we have any new information:

https://help.spreadshirt.com/hc/en-gb/articles/4403591449490
 
Your Spreadshirt & Spreadshop Team
"

« Last Edit: July 13, 2021, 11:24:10 AM by ntpntpntp »
Nick.   2021 celebrating the 25th anniversary of "Königshafen" exhibition layout!
https://www.ngaugeforum.co.uk/SMFN/index.php?topic=50050.0

Offline jpendle

  • Trade Count: (0)
  • Full Member
  • ***
  • N Gauge Society Number: 23638
  • Posts: 2249
  • Country: us
  • Gender: Male
    • Awards
Re: Spreadshirt data breach
« Reply #1 on: July 13, 2021, 01:30:12 PM »
I only read this because I thought you'd mistyped "Spreadsheet"  :D

John P

Offline Newportnobby

  • Global Moderator
  • Trade Count: (+105)
  • Full Member
  • *****
  • N Gauge Society Number: 21962
  • Posts: 38304
  • Country: england
  • Gender: Male
    • Awards
Re: Spreadshirt data breach
« Reply #2 on: July 13, 2021, 02:35:32 PM »
I had the same e mail but just deleted it as I'd never heard of them before. I have, however, bought a polo shirt from the NGS Merchandise shop but have never opened an account with them.
This may/may not be of interest to @Tank

https://shop.spreadshirt.co.uk/631315/

If the data pertains to pre 2014 most of us will have new cards/payment details maybe

P.S. I'm glad the T shirt is 'breathable'. What's the use of one you can't breathe in? :worried:

Offline ntpntpntp

  • Trade Count: (0)
  • Full Member
  • ***
  • Posts: 6781
  • Country: gb
    • Awards
Re: Spreadshirt data breach
« Reply #3 on: July 13, 2021, 06:10:09 PM »
I had the same e mail but just deleted it as I'd never heard of them before...

If the data pertains to pre 2014 most of us will have new cards/payment details maybe

More relevant is the fact Spreadshirt obviously have your email address due to a past transaction, so the likelyhood is that's been stolen and could be used to send you spam emails or maybe try and hack your email account through brute force password cracking.   They could conceivably have your home address as well, if Spreadshirt handled the order fulfilment themselves.
Nick.   2021 celebrating the 25th anniversary of "Königshafen" exhibition layout!
https://www.ngaugeforum.co.uk/SMFN/index.php?topic=50050.0

Offline Tank

  • Administrator
  • Trade Count: (+30)
  • Full Member
  • *****
  • N Gauge Society Number: 17910
  • Posts: 7688
  • Country: gb
  • Gender: Male
    • Awards
Re: Spreadshirt data breach
« Reply #4 on: July 15, 2021, 05:42:16 PM »
I suggest that anyone who has used them, login through the main website and change their website.  I wouldn't click the link in the emails, just in case.  ;)

 

Please Support Us!
September Goal: £60.00
Due Date: Sep 30
Total Receipts: £80.00
Above Goal: £20.00
Site Currency: GBP
133% 
September Donations

anything
SimplePortal 2.3.5 © 2008-2012, SimplePortal