Delivered-To: ionutjula@gmail.com Received: by 10.205.97.7 with SMTP id ci7csp301114bkc; Wed, 5 Feb 2014 05:51:59 -0800 (PST) X-Received: by 10.224.80.70 with SMTP id s6mr2506058qak.85.1391608318877; Wed, 05 Feb 2014 05:51:58 -0800 (PST) Return-Path: Received: from orpheus.librarything.com (orpheus.librarything.com. [74.201.105.9]) by mx.google.com with ESMTP id d69si20604125qge.188.2014.02.05.05.51.58 for ; Wed, 05 Feb 2014 05:51:58 -0800 (PST) Received-SPF: pass (google.com: domain of root@orpheus.librarything.com designates 74.201.105.9 as permitted sender) client-ip=74.201.105.9; Authentication-Results: mx.google.com; spf=pass (google.com: domain of root@orpheus.librarything.com designates 74.201.105.9 as permitted sender) smtp.mail=root@orpheus.librarything.com; dkim=pass header.i=@librarything.com Received: by orpheus.librarything.com (Postfix, from userid 0) id 1F1D92CA97D; Wed, 5 Feb 2014 08:50:39 -0500 (EST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=librarything.com; s=orpheus; t=1391608263; bh=aE/7R9ZoamjH5WmAJZgrtrGeAgOkQW+6agrR9Yf26/w=; h=To:Subject:From:Reply-To:Date; b=fjzpBSh/g8+qaJG2pDbSiRHhzGRNkzPomw6ZsgNh+Tmx7N6l0/VDUT39X8zDJWGjQ N/u1tahLayiwKbnbyV4Mb/+2kRezFgOcfF1MhyMjoGr3PHVo/9IS4eO3ME/6pCkZjb fqfEUV/L9CBIfWIMLoZvPiWXHVo7f2JKuHm6M4Cs= To: ionutjula@gmail.com Subject: Security Notice: LibraryThing Password Reset From: tim@librarything.com Reply-To: tim@librarything.com Message-Id: <20140205135103.1F1D92CA97D@orpheus.librarything.com> Date: Wed, 5 Feb 2014 08:50:39 -0500 (EST) Dear fdd, During a security review, we found that LibraryThing suffered a data breach in November 2011. While no book data or financial information was taken, lost or changed, the hackers did take email addresses and encrypted password hashes for some accounts created prior to that date. You account was NOT included in the breach. As a security precaution, we are requiring all members to change their passwords, here: http://www.librarything.com/changepassword.php?token=42568a944b54ab13 Please read our longer description of the breach here: http://blog.librarything.com/main/2014/02/password-reset/ The entire LibraryThing team and I deeply regret and apologize that this happened on our watch. Since 2011, we have significantly improved our security measures, which have been further tightened across the board since we discovered this breach. Sincerely, Tim Spalding LibraryThing Founder and President