Internet registrar Name.com announced this Wednesday that they recently suffered a security breach. In an email sent to their customers the company said that their information such as usernames, email addresses, passwords, and credit card account information may have been accessed by the yet still unidentified individuals. The company said data on customer passwords and credit card information were encrypted making it nearly impossible for it to be cracked.
In a statement released by Name.com the company said that “Name.com stores your credit card information using strong encryption and the private keys required to access that information are stored physically in a separate remote location that was not compromised. Therefore, we don’t believe that your credit card information was accessed in a usable format. Additionally, your EPP codes (required for domain transfers) were unaffected as they are also stored separately. We have no evidence to suggest that your data has been used for fraudulent activities.”
“As a response to these developments, and as a precautionary measure, we are requiring that all customers reset their passwords before logging in. If you use your previous Name.com password in other online systems, we also strongly recommend that you change your password in each of those systems as well.”
Because of this incident the company has already reset the password of all its customers. Customers who want to access their account need to choose a new password using the unique link sent through their email. The company has also advised customers that if they are using their Name.com password elsewhere then this has to be changed as well.
Few details are revealed as of this time by the company however they did say that the attack was a way to gain access to one of their large single commercial account.
If you are a customer of Name.com and you haven’t received their email yet then expect it to arrive soon.