Today, April 17, 2019, our Internal Security Team detected an incident affecting a small number of ExpandShare users that may have resulted in unauthorized access of a very small number of account information (email address and password). A compromised third-party library was used to gather login credentials for a short period of time. In our security investigation, we found no evidence of unauthorized access to financial and/or credit card information.
As an added precaution, we have reset the password for those ExpandShare accounts. Affected users should go to https://app.expandshare.com/account/password_reset/ and enter their email address to trigger a password reset email for their app.expandshare.com account.
We regret any disruption this may have caused and appreciate your immediate attention. We have taken steps to remedy the issue and to prevent it from happening again in the future