Bad news for to-do lists everywhere: It appears that TaskRabbit has been compromised.
On Monday, TaskRabbit notified users about a ‘cybersecurity incident,’ and advised users to change their passwords. The crowdsourced chore company also took its app and service totally offline while working out the issue.
“TaskRabbit is currently investigating a cybersecurity incident,” the email read. “We understand how important your personal information is and are working with an outside cybersecurity firm and law enforcement to determine the specifics.”
As of 6 p.m. Eastern Time today, the app and website remained offline. The nature of the attack, or how many users were affected, is not currently known. Mashable has reached out to TaskRabbit to learn more, and we will update this article as soon as we hear back.
TaskRabbit is owned by Ikea, which acquired the gig economy app in fall 2017. According to CNet, TaskRabbit has over 1.5 million users, and, per Forbes, over 60,000 “taskers” who make money on the platform.
Twitter users noticed a potential issue Monday afternoon. Several said that company information became available when they visited TaskRabbit online. And some postulated that it could be a phishing attack.
Task Rabbit phishing attack. Emails sent out pointing to website which, for a time, revealed @TaskRabbit‘s private Github, daily transaction volumes, key employee information. @TaskRabbit you need to look into this right now. I believe my account has been compromised. pic.twitter.com/RcT6WXhW6l
— Sam Rad 👾 (@_sam_rad) April 16, 2018
As TaskRabbit works out the issues, please, let’s just hold the bunny puns.