For the attention of all GeniusU users -
On 9th of January 2021, GeniusU support were made aware of a user data breach event that appears to have occurred early in November of 2020. An incident response team was immediately assembled and the legitimacy of the report was verified.
We want to reassure you that we take protecting your data very seriously, and we are constantly assessing our procedures and policies to improve our approach to security. On this occasion though, early investigations show that the names, email addresses, hashed passwords and locations of users are amongst the data that was compromised.
Although many of these attributes are displayed publicly on users' GeniusU profile pages, we are making every effort to mitigate the risk of such an event happening again.
Your passwords have NOT been exposed - we use best practice password hashing and encryption to ensure that your password is never stored in our database as clear text.
Your credit card details have NOT been exposed - our PCI compliance requires us to ensure that that credit card information is never stored in our database.
As a precaution and as part of a best practice we do highly recommend that all users of GeniusU change their password using the “settings” page within the site or the “forgot password” function for maximum protection going forward.
We also urge customers who have any additional concerns to contact us directly on support@geniusu.com.
We thank you for understanding during this time as we work to improve our information security in the face of ever increasing cyber threats.
Kathleen Hamilton
Head of Product
Leave a Reply