Do you use Tumblr?
If so, be aware that your personal information may have been exposed.
Tumblr recently added a feature called "Recommended Blogs" that presents you with a list of blogs you might enjoy based on your past viewing habits. It's a great idea in theory, but unfortunately, there were problems with the way the feature was implemented.
Any blog on the recommended list was placed there in such a way that it left the blog owner's personal information exposed, including:
- IP Address
- Self-Reported location
- Email Address
- Password
Tumblr had this to say in an open letter published on their site:
"It's our mission to provide a safe space for people to express themselves freely and form communities around things they love. We feel that this bug could have affected that experience. We want to be transparent with you about it. In our view, it's' simply the right thing to do.
We found no evidence that this bug was abused and there is nothing to suggest that unprotected account information was accessed."
Even if you've never seen your Tumblr blog on the recommended list, your best bet is to change your password immediately. As usual, if you use the same password for Tumblr that you use on any other web property, change that password too.
Now would be a great time to break yourself of the habit of using the same password across multiple websites. Continuing that practice makes you a ticking bomb. Sooner or later, it's going to explode on you, with tragic consequences that could take years to fully recover from.
Our perspective
We applaud Tumblr's handling of this issue. At a time with other social media platforms are under fire for their handling of security flaws, Tumblr's transparency is refreshing indeed.
The author
Thanks for reading this short post. For more tips on thriving with small business technology, check out the other blog posts at DWPia Blogs. I am also available at dwpia on LinkedIn, at dwpia on Facebook, and @dwpia on Twitter.
Denis S Wilson
I am President and Principal Consultant for DWP Information Architects: specializing in managed IT support for smaller healthcare practices, clinics, insurance companies, law firms, and construction companies in Ventura County and San Fernando Valley. And have created cost-effective IT solutions, for over 20 years, specializing in cybersecurity and regulatory compliance.
I am also a published author and speaker, working extensively with organizations that include: the State of California, the Federal Bureau of Investigation (FBI), the Small Business Administration (SBA), SCORE, Women's Business Centers, and Small Business Development Centers. As well as providing small business technology education programs through business and professional associations.
Contact me if you would like me to speak at your meeting.
Meanwhile, check out this report
Executive Report: 10 Hidden IT Risks That Might Threaten Your Business
