- Jul 22, 2014
- 2,525
- Content source
- https://www.theregister.co.uk/2019/02/01/houzz_data_breach/
Logins, IP address, personal data and the kitchen sink at risk
Home improvement website Houzz has urged users to reset their passwords after an "unauthorised third party" made off with a file containing customer data.
The Californian biz, founded in 2009 and valued at almost $4bn in 2017, is a bartering marketplace and, er, ideas platform for interior designers, architects, traders and home owners.
It said it discovered the incident in "late December" and had been working with "a leading forensics firm" since then.
An email to customers, sent in the early hours of 1 February UK time, stated: "Houzz recently learned that a file containing some of our user data was obtained by an unauthorized third party."
It offered no further details of how the incident occurred, and a separate FAQ on its website added little more, saying only: "Our security team has a number of ways to learn about potential security vulnerabilities, including our own active methods and third-party reporting. The investigation is ongoing."
Neither did the firm disclose how many users had been affected. It said not all had been exposed, but "out of an abundance of caution" it had notified all those who might have been. We've asked Houzz for more details. It claims to have "40 million homeowners, home design enthusiasts and home improvement professionals" signed up.
...
...
Home improvement website Houzz has urged users to reset their passwords after an "unauthorised third party" made off with a file containing customer data.
The Californian biz, founded in 2009 and valued at almost $4bn in 2017, is a bartering marketplace and, er, ideas platform for interior designers, architects, traders and home owners.
It said it discovered the incident in "late December" and had been working with "a leading forensics firm" since then.
An email to customers, sent in the early hours of 1 February UK time, stated: "Houzz recently learned that a file containing some of our user data was obtained by an unauthorized third party."
It offered no further details of how the incident occurred, and a separate FAQ on its website added little more, saying only: "Our security team has a number of ways to learn about potential security vulnerabilities, including our own active methods and third-party reporting. The investigation is ongoing."
Neither did the firm disclose how many users had been affected. It said not all had been exposed, but "out of an abundance of caution" it had notified all those who might have been. We've asked Houzz for more details. It claims to have "40 million homeowners, home design enthusiasts and home improvement professionals" signed up.
...
...