Just received an email telling its users that the Templatic which is a wordpress theme site has been hacked. I used to own quite a lot of Templatic themes before I moved to mythemeshop wordpress themes as they have better mobile friendly themes. Anyway, hacking is the worst thing that has happened to the tech world.
This is the email I just received:
Let me start by saying that templatic has never ever stored any credit card information on our site. All the transactions are only ever handled directly by PayPal or 2Checkout. Our site is only integrated with the above secure payment gateways so your financial data is always safe and never stored by us. In fact, we never had access to your credit card or financial information. Now I will go into detail and share what’s happened.
Our site was hacked recently As announced on our social media accounts a few hours ago, our site was recently hacked and our databases compromised. It looks like the hacker may have gained access to our files and databases on our server. We are actively working with sucuri.net to clean and protect the site. Hacker is demanding ransom money The hacker is now threatening us via email and demanding ransom money be paid. This hacker is also threatening to misuse the data they’ve illegally gained access to and email our data to customers. While this is a very serious and dangerous threat, we are not going to give in to threats and we will not be negotiating with any hacker and that’s no matter how much they try. A security expert has been assigned to this case and investigations are now being conducted. We are also taking legal action against all the illegal activities the hacker has been involved in. What you must do immediately.
If you ever shared your site login information with us such as for your cPanel, FTP or wp-admin, you should immediately change the logins. If you are using any of our products that use the “Tevolution” plugin and you haven’t yet updated the plugin, please follow the instructions in this post (https://templatic.com/news/security-vulnerability-found-themes/) and update the plugin immediately.
Make sure no unknown files are present on your site. We strongly advise you to scan your site now by using security sites such as sucuri.net
In case you are using the same email ID and password for your email account and your account at templatic, you must also change the logins for your email immediately.
Please take a full backup of your site and database. You might receive fake emails pretending to be “templatic” or exposing data. The hacker has threatened to publicly share our files and other data and to email our customers. In case you are ever contacted, I sincerely urge you to ignore and delete it.
This email we are sending today to you is the last email we will send regarding this matter. Anything further, we will share it on our social mediate accounts at twitter, facebook and our official blog here.
I sincerely apologize that this has happened. We have been serving our customers for 8+ years now and will continue to serve you happily. We are always trying to innovate a little bit more than what is possible by default with WordPress. As templatic founder, I take up the responsibility of this and I sincerely apologize to each single one of our customers. We assure you that we are taking best security measures and fight this, no matter what.