Jambox wireless speaker creator Jawbone is singing the blues today. It alerted users early this morning to a hack on its MyTalk network that left the actual names (not to be confused with usernames), email addresses, and encrypted passwords compromised.
The MyTalk network is where people can update their software, find and download apps for Jawbone’s device, and customize their device’s voice and language settings. Those products include Jawbone’s Jambox speakers and headsets. One customer, Dave Zatz, posted the message he received from Jawbone on Twitter. It reads, in part: “Based on our investigation to date, we do not believe there has been any unauthorized use of login information or unauthorized access to information in your account.”
It continues to say that the password has been “disabled” and you can reset the password by visiting the user reset page and completing emailed instructions.
Of course, if you use that password on any other websites, you should change it immediately. One of the first things a cyber-criminal will do with your password is try it on other websites. And though Jawbone says that because your password was taken was encrypted and none of “the actual letters and numbers in your password” were revealed, hackers have ways to decrypt information.
As The Verge notes, however, it doesn’t seem this hack affected all Jawbone customers. According to a statement provided to the Verge, Jawbone says that the attack was “identified within hours” and subsequently blocked.