September 13, 2016 – 10:10 p.m. EDT
Dear EurekAlert! Registrants:
The EurekAlert! website has been taken offline as AAAS works diligently to address a serious security breach.
We are taking this step out of an abundance of caution. The integrity of content on our website is of the utmost concern to us. On September 11, we were notified of a potential breach to our system. An investigation revealed that our website had experienced an aggressive attack on September 9 that compromised usernames and passwords. As we were working to implement a secure password-reset protocol for all registrants, the unknown hacker publicly released an embargoed EurekAlert! news release. We then decided to bring the site down immediately, to protect other embargoed content.
Please be assured that financial information from subscribing institutions is not stored on the EurekAlert! website and therefore remained secure. Registrants’ usernames and passwords were compromised, however.
We deeply regret the inconvenience that this security breach and the related site outage may cause reporters and public information officers. We will bring the site back online as soon as we can ensure that vulnerabilities have been eliminated. Please email the EurekAlert! team at firstname.lastname@example.org, or contact me directly with any questions or concerns.
Chief Communications Officer and Director, Office of Public Programs
American Association for the Advancement of Science