Reverb recently became aware that for approximately ten minutes on June 10, 2021, logged in users had access to information from other customers’ orders. No credit card information was exposed. Our team fixed the issue immediately and is investigating its cause.
The order information was discoverable only in the seller admin section of the site in the “orders” tab for logged in users.
We believe that only a small number of sellers viewed the information while it was briefly visible.
How are you certain that no payment information was accessible?
We have investigated the issue and determined that payment information was not viewable. If we have any further updates to share, we will reach out to affected users directly via email.
Is there any action that I need to take?
No. Payment and password information were not viewable. If we have any further updates to share, we will reach out to affected users directly via email.