You are receiving this email because you have an Action Network account.
Yesterday a software bug was disclosed affecting Cloudflare, a service Action Network uses. This bug had the potential to leak sensitive information like passwords or API keys to the public. While right now we do not believe Action Network was affected, it's impossible to say for certain.
So, we're writing you out of an abundance of caution to recommend you log out of Action Network, reset your account password using the password reset form on the log in page, log back in, and, if you use the Action Network API, revoke and re-issue any API keys you use from the API & Sync section in the Start Organizing menu. After you've done that, your data should be safe from any impact this bug may have.
You can find a balanced rundown of the bug here. Cloudflare's detailed description of the bug can be found here. A report from Google, who's security researchers initially found the bug, is here.
Once again, we have no evidence that any Action Network data was affected by this bug. If we receive updates as the situation develops, either proving our data was affected or firmly showing us it was not, we will let you know. However, we treat security very seriously, so out of an abundance of caution, logging out, resetting your password, and revoking and recreating your API keys will prevent any secrets potentially disclosed from being used to access your data without your permission. (We also recommend enabling 2-factor authentication, available when editing your profile, for an extra layer of security.)
If you have any questions, feel free to reply to this email. Your reply will reach me personally.
Thank you for being an Action Network partner,
Director of Technology