The popular crowd-funding site Kickstarter confirmed Saturday that it had been hacked.
It said that although no credit card information was taken, attackers stole usernames, e-mail addresses, mailing addresses and phone numbers.
"Actual passwords were not revealed, however it is possible for a malicious person with enough computing power to guess and crack an encrypted password, particularly a weak or obvious one," Kickstarter said in a blog post, adding that "as a precaution, we strongly recommend that you create a new password for your Kickstarter account, and other accounts where you use this password."
It said law enforcement officials contacted the company Wednesday and informed it that hackers had sought and gained unauthorized access to some of its customers' data.
Kickstarter says law enforcement advised it of the breach on Wednesday night and that it "immediately closed the security breach and began strengthening security measures throughout the Kickstarter system."
The site also said "there is no evidence of unauthorized activity of any kind on all but two Kickstarter user accounts."
If you have any questions or concerns, email the company at email@example.com