PDA

View Full Version : Data Breach @ USA Cycling


azrider
03-18-2016, 03:29 PM
We learned two days ago of a data security incident within USA Cycling’s IT systems that could include some of your personal information associated with online accounts, including your name, mailing address, email address, date of birth, emergency contact, and your USA Cycling password.


Awesome!*

Bruce K
03-18-2016, 03:35 PM
Interesting - as a "lapsed" member, I got no such notification

:crap:

BK

Michael Maddox
03-18-2016, 03:36 PM
Just got this email, too. Can't wait to start seeing phantom posts with my name on it here and across the hall. What else they imagine to gain, I don't know.

Tony T
03-18-2016, 03:41 PM
Just got this email, too. Can't wait to start seeing phantom posts with my name on it here and across the hall. What else they imagine to gain, I don't know.

They got a lot of info: "…your name, mailing address, email address, date of birth, emergency contact, and your USA Cycling password."

MattTuck
03-18-2016, 03:43 PM
Probably chinese hackers employing corporate espionage in support of the Chinarello factory.

Mark McM
03-18-2016, 03:44 PM
I just received an email from USACycling about this.

The first sentence says:

"We learned two days ago of a data security incident within USA Cycling's IT systems that could include some of your personal information associated with online accounts, include your name, mailing address, email address, date of birth, emergency contact, and your USA Cycling password."

Ironically, the email finishes with the statement:

"You will know valid messages from USA Cycling as we will include your license account number in all membership emails"

If somebody got our account information, can we really know that an message is genuine if it contains our account information?

CampyorBust
03-18-2016, 03:44 PM
No, Putin did it! duh

Mark McM
03-18-2016, 03:48 PM
Just out of curiosity, we've been seeing these kinds of announcements more frequently these days. Is there a law that companies have to disclose to those people whose personal information they store that the information has been stolen? If not, should there be such a law? Given the amount of personal information that companies chose to keep, there should be some accountability if they don't take adequate safeguards to protect it.

berserk87
03-18-2016, 03:52 PM
I just received this today as well. Disconcerting...

azrider
03-18-2016, 03:55 PM
i use the same login/pw for several "lower tier" online profiles, usacycling included, needless to say i'll be changing some pw's for next hour or so

ugh

thegunner
03-18-2016, 04:03 PM
also can't login to USA Cycling right now... :( great IT there.

jtbadge
03-18-2016, 04:13 PM
Are we still storing unencrypted passwords in 2016?

thegunner
03-18-2016, 04:15 PM
Are we still storing unencrypted passwords in 2016?

it's the euro way.

txcid05
03-18-2016, 04:19 PM
It's not even letting me log on to change my password....:confused:

velomonkey
03-18-2016, 04:20 PM
Cool . . . . . My CAT 1 upgrade went through!!!!!!

Oddly enough Kim Jong-un is a CAT 1 across all disciplines.

txcid05
03-18-2016, 04:22 PM
Cool . . . . . My CAT 1 upgrade went through!!!!!!

Oddly enough Kim Jong-un is a CAT 1 across all disciplines.

bwahaha :hello: good one!

shovelhd
03-18-2016, 04:38 PM
I reset my password through the link, but when I try and log in I get a redirect loop error. The site is wack.

This is a problem as I'm the Chief Referee for a race on Sunday (assuming we don't get snowed on), and the easiest and best way to fill out the CR report is through their online system. It's one of the things they did right.

sg8357
03-18-2016, 05:42 PM
Probably chinese hackers employing corporate espionage in support of the Chinarello factory.

Or the FBI looking for more dirt on he who cannot be named.
USA Cycling practicing plausible deniability.