The Freecycle Network (TFN,) is a private, nonprofit organization that coordinates a worldwide network of “gifting” groups to divert reusable goods from landfills.
The organization confirmed that it has suffered a data breach that impacted more than 7 million users
In response to the incident, The Freecycle Network prompted users to reset their passwords after their credentials were compromised.
The security breach was discovered on August 30, exposed data includes usernames, User IDs, email addresses and passwords.
“On August 30th we became aware of a data breach on Freecycle.org. As a result, we are advising all members to change your passwords as soon as possible.” reads the data breach notice published by the organization. “The breach of data includes usernames, User IDs, email addresses and passwords. Because of the exposure of personal passwords we are taking every measure to quickly inform members about the need to change their passwords.”
The organizations recommend users who have shared the same password elsewhere to change it there as well. According to the notice, no other personal information was compromised and the security breach has been closed.
The Freecycle Network notified the incident to respective privacy authorities and is informing impacted users.
The organization urges users to remain vigilant of phishing emails, and avoid clicking on links in suspicious emails and downloading attachments.
The company has not shared details about the attack.
Follow me on Twitter: @securityaffairs and Facebook and Mastodon
(SecurityAffairs – hacking, data breach)