Information About HubSpot's March 18, 2022 Security Incident

On March 18, we learned that a bad actor compromised a HubSpot employee account. While our investigation is still underway and we continue to learn additional details, our initial assessment suggests that data was exported from fewer than 30 HubSpot portals, all of whom have been notified. At this time, we believe this to be a targeted incident focused on customers in the cryptocurrency industry. We have terminated access for the compromised HubSpot employee account and removed the ability for other employees to take certain actions in customer accounts. We take the privacy of our customers and their data incredibly seriously.

While our investigation is ongoing, we wanted to share these initial findings even as we may learn additional facts through our investigation that cause the details above to change or evolve.

Frequently Asked Questions

  • While our investigation is still underway and we continue to learn additional details, our initial assessment suggests that data was exported from fewer than 30 HubSpot portals, all of whom have been notified. If you have further questions, please contact HubSpot support.

  • Customers of impacted companies should reach out to those companies for information about what data was shared and any necessary steps they need to take. 

  • The bad actor was attempting to access contact data. Additional details on the bad actor’s actions were provided to impacted customers.

  • Some employees have access to HubSpot accounts. This allows employees such as account managers and support specialists to assist customers. In this case, a bad actor was able to compromise an employee account and make use of this access to export contact data from a small number of HubSpot accounts.

This page was last updated at 9:20 a.m. ET on March 21, 2022