At Collectibles.com, as we strive to build innovations to better serve all collectors, the trust and security of our customers are always our top priorities. Transparency is a requirement in the relationship, which is why we are writing to inform you of an incident involving our systems that may have affected some customer data.
We recently became aware of an issue where an unsecured network database used by our system temporarily allowed unauthorized access to information, including user names, email addresses, and collections data — most of which is already publicly available as defined by user preference to showcase their items. Since all passwords are encrypted, it's important to recognize that no user account logins were compromised. According to one recent report, it is alleged that several hundred thousand accounts may have been exposed, but we have no evidence of how many accounts were actually affected. Upon initial discovery, we immediately took steps to secure the affected instance, and it is no longer publicly accessible.
Further, we are conducting a thorough investigation with the assistance of cybersecurity experts to determine the full scope and impact of this incident. At this time, we have no evidence that any user data has been misused. However, out of an abundance of caution, we are notifying all potentially affected customers to ensure you have all the information and are fully aware of the circumstances.
What We're Doing
- We have strengthened our security measures to prevent similar incidents in the future.
- Our team is working around the clock to investigate and address this matter.
- We are dedicated to our users and will provide updates as we learn more.
What You Can Do
While we have no indication or reports of any misuse, we recommend that all users remain vigilant by monitoring your accounts for any unusual activity and be aware of spam or phishing emails that may be delivered by outside bad actors. Please forward any suspicious communications for us to review and take action if necessary.
We deeply regret any concern this incident may cause and are committed to maintaining the highest standards of data protection. If you have questions or need assistance, please email our customer support team (support@collectibles.com) or visit our support page here: https://collectibles.helpscoutdocs.com
Thank you for your continued loyalty and trust in Collectibles.com. We will keep you informed as we move forward, continue to improve our platform, and introduce more features to delight!
Sincerely,
Alex Ivanov
Cofounder & CEO
Collectibles.com
