Digital gift card website Gyft is notifying some of its customers that they may have been affected by a data breach.
Between October 3 and December 18, there was unauthorized access to two Cloud providers used by Gyft. This access allowed an unknown actor to view and download user information, including:
- Contact information
- Dates of birth
- Gift card numbers
Anyone with access to these gift card numbers would have been able to use them (and still can), leaving many people out of pocket.
Gyft has also said that login details may have been compromised too, putting people at even larger risk – especially if they use the same login credentials on multiple sites.
Affected users will be forced to reset their passwords when they next try and log in.
Unique login credentials
This breach serves as another reminder of how important it is to use a different password for every online account. By doing so, you don’t leave yourself vulnerable when one of the sites you use gets breached.