Over the weekend, Atlassian said that it discovered and blocked “suspicious activity” on HipChat which resulted in unauthorized access to data for 2 percent of its users.
The company says that for those 2 percent of users, names, usernames, email addresses and encrypted passwords were stolen. The company said it has issued a password reset for affected users and has emailed them directly.
Atlassian says that passwords are “one-way encrypted” but users who are concerned can easily change their passwords here.
We’ve contacted Atlassian for further clarification on the attack but would not comment further on the attack.
➤ HipChat Security Notice and Password Reset [HipChat Blog]