Last Updated October 15, 2019
PokerCoaching.com recently identified and addressed a security breach involving user data. We know transparency is important to our community, and we have created this page to share what we have learned from our investigation, measures we have taken, and what steps users can take in response.
What happened
On October 7, 2019, we were notified by a security consulting firm of a potential breach of our customer data. We investigated further and identified unauthorized access to some of our databases that we use to run our services. These databases contained your account information and personal information, but did not include payment information, since we do not store or process payments ourselves.
We found the method the attacker used to gain access to our databases and we have upgraded our software to close the vulnerabilities we became aware of.
What information was involved
The databases included information we use to run our services. We know the attacker gained access to your email address and may also have gained access to your name, password, and address.
This incident did not involve financial information like your credit card number because we do not store this information ourselves and we use third party companies like PayPal and Stripe to process our transactions.
What we have done
We have identified and taken steps to reduce the chance of future incidents by implementing industry best practices for safeguarding of data and code. We have replaced our custom user management system to an industry standard tool that implements standard best practices for safeguarding your data. We have moved the hosting of parts of our platform to companies that specialize in keeping the software we use including plugins up to date. Finally, we have notified the FBI about the security breach.
How we are moving forward
We will continue to fix and remove legacy code across our platform as quickly as possible. We have also begun talks with third-party companies to perform security audits and help us fix or replace our code.
As a precaution, we strongly encourage all users to login to their accounts and reset their passwords. Also, if you use the same email / password combination that you created for PokerCoaching for any other online service, we recommend you change your password there as well. You can login and change your password here: https://pokercoaching.com/my-account/edit-account/
If you have not updated your password by 10/22/2019, we will disable your password. You can reset your password by going here: https://pokercoaching.com/my-account/lost-password/
We deeply regret this incident happened. We want to assure you that we value your security and privacy and that we are doing everything we can to resolve this issue and minimize the chance of it happening again. We will post future updates on this page: https://pokercoaching.com/security/
If you need additional help, please send us an email to support@pokercoaching.com.
We sincerely regret any concern this may have caused you and we’re here to answer questions you may have.
– The PokerCoaching.com Team