Your hacker Blog

Click2Mail suffered a data breach that potentially impacts 200,000 registrants

Click2Mail.com, a US Postal Service affiliate partner, has suffered a data breach that exposed the personal information of its users.

The US Postal Service affiliate partner Click2Mail has suffered a data breach that exposed the personal information of its users.

The company allows its users to professionally print letters, flyers or postcards and deliver them in a business day at low prices.

It also allows users to manage mailing lists conveniently through the web browser. The company is sending out data breach notices to its impacted users.

The incident was first reported first by DataBreaches.net which was contacted by a former customer of Click2Mail who reported their suspicion that Click2Mail may have been hacked. The security breach was discovered on October 4, 2019.

Exposed users’ data include name, organization name, account mailing address, email address, and phone number. The company pointed out that it doesn’t store users’ financial data.

“We have learned that your personal information, including name, organization name, account mailing address, email address, and phone number may have been compromised.” reads the data breach notice sent to the users. “On October 4th, 2019 it was discovered that registered Click2Mail users’ names and email addresses were being used by unknown parties to send multiple spam emails. Technical analysis of our systems detected an intrusion point that was closed that same day.”

The company hired a cyber-security firm to help its staff in investigating the incident.

Lee Garvey, President and CEO of Click2Mail confirmed that the company is going to notify the incident to its 200,000 Click2Mail.com registrants.

“In a follow-up communication, Lee Garvey, President and CEO of Click2Mail, informs this site that slightly more than 200,000 Click2Mail.com registrants will be receiving notifications, which will be sent out in segments, not all at once.” states a post published on databreaches.net. “Garvey also explained that prior to receiving this site’s email inquiry, they had received an email from a helpful customer who had used a tagged email address and was getting spam.  From the description, it sounds like the same former customer who contacted this site to alert us to their suspicions that Click2Mail had been hacked.”

window._mNHandle = window._mNHandle || {};
window._mNHandle.queue = window._mNHandle.queue || [];
medianet_versionId = “3121199”;

try {
window._mNHandle.queue.push(function () {
window._mNDetails.loadTag(“762221962”, “300×250”, “762221962”);
});
}
catch (error) {}

Pierluigi Paganini

(SecurityAffairs – hacking, data breach)

The post Click2Mail suffered a data breach that potentially impacts 200,000 registrants appeared first on Security Affairs.