we recently learned that a hacker broke into one of our secured database servers that's not currently in use on our live environment and leaked encrypted password data.
However, the password data of all users who have logged in since September 19, 2017 is fully protected, despite the leak, because of a 2017 update to the method we used for securing our password data.
Accounts of inactive users who have not logged in since 2017 have been locked for security reasons. These users need to request a new password to use their account again.
Additionally, we will ask all users, upon logging in, to set a new password. If you have any problems with this or with your Cardmarket account, please get in touch with the Helpdesk.
We've also taken all the necessary steps to comply with the GDPR in order to ensure that your data is secure.
We're sorry for any inconvenience this may cause,
Your Cardmarket Team