I just received this email (to an address I'd used to sign up to a course on https://bitfountain.teachable.com/):<p>Dear <chaghalibaghali>,<p>We are writing to inform you of a suspected data breach involving accounts created between September 17, 2013 and November 21, 2015. We have reason to suspect that personal information related to accounts on Bitfountain (joined 2014-08-19) may have been compromised. This includes the email addresses and passwords associated with the school's Teachable (formerly Fedora) account.<p>As a precaution we are enforcing password resets for potentially affected users.<p>You can reset your password here: https://sso.teachable.com/secure/teachable_accounts/password/new<p>If you happen to use this password with any other service, we highly recommend updating your password there as well.<p>We apologize for the inconvenience, and thank you for your understanding in helping us keep Teachable safe.<p>Team Teachable
I got this too. There's zero incentive for startups to protect data privacy of their users when the repercussions are just that they have to shoot out a broadcast email to their old users asking them to spend hours resetting passwords.