Breach exposes e-mails and passwords.
E-mail addresses and passwords for a limited number of NameDrive customers were obtained and posted in a hacker forum this month. The security breach just came to light today. NameDrive has responded by instituting new security measures including password resets:
We were alerted of a possible security breach affecting less than 1% of our accounts, although we have no indication that any unauthorized access was gained, we have reacted forcefully to ensure absolute security for your account.
If you have any concerns, please feel free to contact us at email@example.com
NameDrive was quick to act after being informed of the breach.
It is unlikely that the intent of the hackers was to login to NameDrive accounts, but more likely used to check free e-mail accounts that may have used the same password as the NameDrive accounts. However, the information could have been used to access NameDrive and get information such as tax ids.
A compromised e-mail account can be used for a number of malicious reasons, but I am unaware of any incidents linked to this. NameDrive customers should consider changing passwords at other sites if they use the same password across multiple web sites.
This is the second security breach to hit the domain community over the past month. Last month limited information from 1,000 accounts at GoDaddy was compromised.