New Peak Media Inc. releases open letter to customers following data security incident

New Peak Media Inc. is releasing the below open letter to its customers outside of Canada, following a recent data security incident (the “Breach”).

To our customers:

We, at New Peak Media Inc. (“us”, “our”, or “we”), are strongly committed to transparency and the protection and security of your personal information. Accordingly, we are writing to inform you of the Breach that affected our organization and may involve your personal information.

The Breach occurred on our website, www.astrologyanswers.com between July 1, 2019 and August 24, 2020. Customers may have had the following information disclosed to unauthorized third parties: first and last names, mailing addresses, email addresses, phone numbers and credit card information. Due to the Breach, customers may have fraudulent charges appear on their credit card accounts.

We are conducting a thorough review of the Breach and our records, and we will notify you if there are any further significant developments. Additionally, we have implemented and will be implementing additional security measures designed to prevent a recurrence of such an attack and to protect the privacy of our valued customers. For example, we:

  • (a) have hired a third party to conduct a forensic investigation and to complete penetration testing;
  • (b) are rebuilding our production servers and updating our passwords;
  • (c) are limiting access to our production servers to only a small number of employees on a “need to access” basis;
  • (d) will segregate our production environments from our development/staging environments;
  • (e) are implementing automated code deployments to reduce the chance of unauthorized or untracked code being published to our production servers;
  • (f) will run weekly vulnerability scans to ensure that customers’ personal information is protected.

We are also working closely with the Office of the Privacy Commissioner of Canada, our payment processors, credit card companies, banks, and law enforcement, to ensure the Breach is properly addressed.

As a precautionary measure, we recommend that you take steps to reduce the risk of harm that could result from the Breach or to mitigate that harm, such as regularly reviewing your credit card statements. We apologize for any inconvenience that this Breach may cause you.

If you detect any suspicious activity in your credit card account you should promptly notify the relevant institution or company that maintains your credit card account.

If you have any questions or concerns, please contact our customer service team at:

Toll Free: 1-866-329-7640

Email: support@astrologyanswers.com

Sincerely,

Miguel Schraeder, Chief Technology Officer

New Peak Media Inc.

Frequently Asked Questions

Am I affected by the breach?

If you purchased a product from Astrology Answers between July 1, 2019 and August 24, 2020 you may have been affected.

What personal information was subject to the breach?

Customer personal information that was subject to the breach during the product checkout process: Name, Address, Email, Phone Number, Credit Card Number, CVV, Expiry Date

Was my credit card used for fraudulent activity?

Unfortunately we are unable to confirm if your credit card was used for fraudulent purposes, please review your credit card statements for suspicious charges or activity.

How do I report suspicious activity on my credit card?

If you notice any suspicious charges or activity on your credit card statement, please notify the relevant institution or company that maintains your credit card account

Is this an ongoing issue?

Although investigation is ongoing, we identified the source of the breach and removed it from our systems August 24, 2020.

What is Astrology Answers (New Peak Media Inc.) doing to prevent this kind of loss from happening again?

We:

  • (a) have hired a third party to conduct a forensic investigation and to complete penetration testing;
  • (b) are rebuilding our production servers and updating our passwords;
  • (c) are limiting access to our production servers to only a small number of employees on a “need to access” basis;
  • (d) will segregate our production environments from our development/staging environments;
  • (e) are implementing automated code deployments to reduce the chance of unauthorized or untracked code being published to our production servers; and
  • (f) will run weekly vulnerability scans to ensure that customers’ personal information is protected.

How common are data breaches?

The Privacy Rights Clearinghouse, a nonprofit organization that tracks data breaches, estimates that there have been 9,044 public breaches since 2005. More than 10 billion records — including passwords, credit card numbers and even passports — have been exposed. There is no single federal law that mandates companies to notify affected customers.

Source: https://www.politifact.com/article/2019/sep/23/numbers-how-common-are-data-breaches-and-what-can-/

I was not affected but I would like to remove my information from the system. How do I do this?

Please contact our customer service team to remove your information from our system. You can contact them via phone 1-866-329-7640 or email support@astrologyanswers.com .