Hacking Kickstarter Service

As it became known, on February 12, law enforcement officials contacted the Kickstarter team to inform them of the hacking of their project. Some hackers gained access to the personal data of registered users.

The team closed the security hole, but the data is already gone. As they themselves say in a February 16 press release , there was no leakage of data on bank cards (and how - after all, payments on the project are carried out by Amazon).

Usernames, e-mails, home addresses, telephones and encrypted passwords have leaked. The passwords of early users were encrypted with salt and SHA-1 several times. Later - through bcrypt.
Naturally, the team apologizes to the users of the service and assures that they are doing everything possible to improve the security of users.

However, the more complex the project, the more difficult it is to provide this security. It is worth recalling this again - there is never much security. Take care of yourself and your data.