To the ClassPass Community:
We recently became aware that an unauthorized party gained access to certain data associated with user accounts at several companies, including ClassPass. No sensitive financial data, identifying numbers or payment card numbers were or could have been accessed from ClassPass. However, information from a legacy database including names, usernames, email addresses and hashed (unreadable) passwords may have been accessed.
If your account has potentially been impacted, you will be required to create a new password the next time you log in to your account as a precautionary measure. We will also continue monitoring our systems to detect and prevent unauthorized access and institute additional security controls as needed.
Please contact our support team if you have any questions.
The ClassPass Team
February 26, 2019