Earlier today, popular news aggregator Flipboard announced that an unauthorized third party has access to certain databases containing users' account information.
according to Flipboard, the third party has access to the databases "more than once" between 2 June 2018 and 23 March 2019, as well as between 21 April 2019 and 22 April 2019. Compromised user account information includes user names, email addresses and passwords.
The databases also contain digital tokens used to connect Flipboard accounts with third-party websites and social media platforms Facebook, Google, and Twitter. Flipboard did not find evidence that the tokens are being used to get users' accounts, although it has been deleted and replaced, just in case.
The security breach does not affect any Flipboard user. Also, the offenses do not have social security numbers, bank account information, credit card numbers, or any other government issued IDs and financial information. The investigation is still ongoing, although Flipboard has already notified law enforcement of the incidents.
Flipboard also noted that compromised passwords were salted and chopped. However, older passwords that have not been updated since March 2012 are not protected by stronger encryption technology. Flipboard's investigation is still ongoing, so we need more information soon.
As a precaution, Flipboard recovers all its 145,000,000 users' passwords. This means that you must first get a new one when you sign in. Alternatively, you should re-verify your third-party account if you previously used to sign in.