If You Are Using Poshmark, It’s Time to Change Your Password
If you are using Poshmark it is time to change your password.
On Thursday, the service posted a security notice informing users that it was recently discovered that the data of some Poshmark users had been obtained by an unauthorized third party.
While the data did not include any financial information or anyone’s physical address, and the service does not believe anyone’s password information has been compromised, it also recommends changing your password now just in case.
Here’s what was potentially compromised:
• Certain user profile information specified for public use, such as username, first and last name, gender, and city.
• Certain internal account information such as email address, user ID, size preferences, and one-way encrypted passwords that are unique to each user (making it nearly impossible to use these passwords to access the account), as well as social media profile information collected when users connect social media accounts to Poshmark
• Certain internal Poshmark settings for email and push notifications.
While this isn’t the biggest problem in the hacking world ( looking at you, Equifax ), it’s still a good idea to go ahead and change your password just in case.
It is also a strong reminder that you cannot use the same password for different services. While this can make things a little easier when you use the same password for a lot of things, if one of them gets compromised, you potentially open other accounts on unrelated services that can be hacked as well.
Poshmark says that after the incident, it expanded its security measures and “implemented enhanced security measures across all systems to help prevent similar incidents in the future.”