We have an important update regarding the announced data leak on Cardmarket:
Unfortunately, we recently learned that data other than the encrypted (thus unusable) password data was taken in the illegally obtained leak, including:
1. First and last names
2. Dates of birth (if provided)
3. E-Mail addresses
3. Phone numbers (if provided)
This data was temporarily made public last week. The leaked data is no longer online or accessible.
We are deeply sorry about this incident and can assure you that we have taken all necessary steps to ensure your Cardmarket accounts won't be compromised again.
Our e-mail servers are currently handling a very high amount of traffic. Therefore e-mail communication with Cardmarket is heavily delayed. E-Mails may take several hours to be sent/received.
Unfortunately this does also affect password reset emails. So if you have requested a password reset but have not yet received the e-mail with the reset link, please wait. Requesting another reset or contacting our Customer Support will not speed up the process.
We are sorry for the additional inconveniences.
We are happy to tell you that the issue regarding the "Mark as sent" button is solved. You may now confirm shipping again without problems. If you are still experiencing problems, you might need to clear your browser cache.
We are terribly sorry for this technical issue that unfortunately happend at a most inconvenient time but has absolutely nothing to do with the data leak we communicated about in the last two days.
We would like to thank all users that have contacted us regarding the "Mark as sent" but. As we have received a very high number of messages, we kindly ask for your understanding, if we cannot reply to all those messages personally.
we recently learned that a hacker broke into one of our secured database servers that's not currently in use on our live environment and leaked encrypted password data.
However, the password data of all users who have logged in since September 19, 2017 is fully protected, despite the leak, because of a 2017 update to the method we used for securing our password data.
Accounts of inactive users who have not logged in since 2017 have been locked for security reasons. These users need to request a new password to use their account again.
Additionally, we will ask all users, upon logging in, to set a new password. If you have any problems with this or with your Cardmarket account, please get in touch with the Helpdesk.
We've also taken all the necessary steps to comply with the GDPR in order to ensure that your data is secure.
We're sorry for any inconvenience this may cause,
Your Cardmarket Team