The board has been informed that the servers belonging to the vendor who handles our website have been compromised. It is our understanding that this was not a lone attack on the HPROA, but multiple law enforcement sites were also impacted. Based on this, we have to assume that our Member Directory information may also been been compromised. It is IMPORTANT TO NOTE that credit card information used by members through our website’s application process is not stored by the HPROA or its website hosting company, and subsequently, was not compromised. Financial information is always encrypted and immediately electronically sent to a national credit card processing center via a secure network. As result, the HPROA will soon be implementing a new security feature requiring members to create an account with a unique user-ID and password (dual authentication) in order to access the Member Directory.
You should continue to use caution when clicking on any links you receive via email. Feel free to contact us via email at firstname.lastname@example.org if you ever receive what you believe to be suspicious activity purportedly coming from the HPROA. We will be notifying members when the new security features are being rolled out. Board of Directors.