Social networking service Formspring is warning its users to change their passwords following the loss of some 420,000 password hashes.
The company said that it had experienced a breach which had lead to the loss and eventual disclosure of the hatches, which have since been updated. The company said it also resolved the security hole which was exploited in the breach.
No user names or other information is believed to have been obtained in the attack.
"Once we were able to verify that the hashes were obtained from Formspring, we locked down our systems and began an investigation to determine the nature of the breach," the company said.
"We found that someone had broken into one of our development servers and was able to use that access to extract account information from a production database."
While only 420,000 hashes were compromised in the incident, users are being advised to access the site and replace their current passwords with a new, secure passcode out of precaution.
Graham Cluley, senior technology consultant with security firm Sophos, hailed the company for its speedy response and noted that the incident underscores the need for best practices with passwords.
"There are undoubtedly lessons to be learnt from the hack - and users would be wise to ensure that they take heed of the advice to use unique, hard-to-guess passwords on different websites," Cluley said in a blog post.
"But I'm much more impressed with how Formspring has handled this incident than, say, LinkedIn."
Dr Kuan Hon criticises GDPR consent emails that will only eviscerate marketing databases and 'media misinformation'
Apple squashes Steam Link app on 'business conflicts' grounds
Philip Hammond wants to forget rules that the UK agreed with the EU to ban non-European companies from the satellites
Instapaper to 'go dark' in Europe until it can work out GDPR compliance