TaskRabbit sent me an email they reset my password "out of an abundance of caution to protect your account". I assume this means they got hacked, and this is the weaselly corporate way of dealing with it without admitting anything. So I checked Google for any recent news about the hack. Didn't see anything (yet) but found articles from Dec 2020[1] and Apr 2018[2].<p>They have my payment info on file and there is no way to delete it. You can only change it to a different credit card.<p>[1]https://techcrunch.com/2020/12/22/taskrabbit-resets-passwords-suspicious-activity-network/<p>[2]https://lifehacker.com/what-you-need-to-know-about-the-taskrabbit-hack-1825319011
Although this comment doesn't address you point directly, but to the general approach most companies take when they get hacked and the repercussions of it.<p>Just from a question standpoint of the general approach companies take in situations like this, do you think there should be repercussion from a legal standpoint when it comes to the compromising of user data that a company didn't adequately protect. I believe their are standard approach to protecting user data, which can result in standardization of security as it pertains to online companies.<p>What are your thoughts, not to hijack your question, but as a side inquiry into frequency of rabbit being hacked?
For relatively small vendors like TaskRabbit, I always use a virtual card that can easily be closed/paused.<p>The one with the best UI is Privacy.com. It's free but it has to link to a debit card, not a credit card.<p>If you need a virtual card linked to a credit card, look at PayPal or Click to Pay.
Such a weasely email too. No mention of getting hacked. They just decided to contact me a year after I last used the service because they’re randomly concerned about my password.