Brad Heightman Posted February 19, 2021 Report Share Posted February 19, 2021 I received a similar warning that actually shows my email address was affected by 2 breaches from Nitro. It is very disappointing that as a user of several years with multiple licenses that absolutely no communication from Nitro happened to let us know about this. Here is a screen shot of the alert I got from an other service Link to comment Share on other sites More sharing options...
Official Nitronaut Allain Umailin Posted February 22, 2021 Official Nitronaut Report Share Posted February 22, 2021 Hello @Brad Heightman, Thank you for reaching out to us through our Community Forums! I believe our Incident Response Team have reached out to all affected users, however if you were not notified, our sincere apologies for the inconvenience this has caused you. Kindly note that Nitro only had one isolated security incident involving limited access to Nitro databases by an unauthorized third party. The impacted databases are specific to online services and have been used primarily for the storage of information connected with Nitro’s free online products. There was no impact to Nitro Pro (PDF) or Nitro Analytics. Exposed user data included user email addresses, full names, and highly secure hashed and salted passwords. Nitro's free online conversion service does not require users to create a Nitro account or to become a Nitro customer. Users are simply required to provide an email address to which converted files are delivered. Users of our free online conversion service may have had their user information stored in an impacted database, but do not have a Nitro account. Upon learning of this incident, Nitro conducted a forced password reset for all users to further secure customer accounts. Since the incident, Nitro has been working closely with external cybersecurity experts to bolster the security of all systems, including enhanced logging, detection and alerting services in all regions, as well as increased data monitoring and re-evaluation of all protocols. The IT environment remains secure and Nitro has not seen any malicious activity in our systems since the incident. Should you have further questions and if you would like to share the screenshot of the alert from your other service, feel free to send a direct email to our Incident Response Team through incident@gonitro.com Our sincere apologies for this inconvenience and stay safe always! Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now