Jawbone has announced that a small number of accounts had been compromised by cyber-attacks. The company did not mention how many, but did use the word “limited” to describe the scope of the attack. In any case, some user data (email, password, address) may have been stolen, but Jawbone doesn’t think that more than that was accessed. Note that the password information that was accessed was encrypted, and if Jawbone used a different encryption key for each account, it should be hard (or at least very long) for hackers to do anything at scale with them.If your account is among those who got hacked, you should be asked via email to choose a new password as Jawbone invalidated the old password. Maybe now a good time to check your SPAM filter for the Jawbone email. As far as Jawbone knows, the data has not been misused for now.
If you are unfamiliar with Jawbone’s MyTalk service, it is used to update the Jawbone devices and manage them in general. If your account has been compromised, and you find yourself locked out, Jawbone recommends taking the following steps:
- Copy and paste this URL into your web browser: https://jawbone.com/user/reset
- Type in your email address and click the Reset Password button
- You will receive an email with instructions to complete the password reset