A message from the AhaSlides team: security incident disclosure

A message from the AhaSlides team: security incident disclosure

Dear AhaSlides community,


We discovered on May 8, 2025 that an unauthorised party had gained access to our systems using a compromised internal access key, starting in November 2025. This was not a targeted attack on AhaSlides — the access occurred through a leaked credential. The moment we identified it, we shut it down and secured the affected systems immediately.

What data may have been exposed

  1. Email addresses
  2. Billing information: invoices and billing address
  3. Passwords in encrypted form — your actual password cannot be derived from this
  4. Files and images uploaded to AhaSlides may have been accessible

What was NOT exposed

  1. Credit card or payment card numbers — we do not store them
  2. Plain-text passwords
  3. We found no evidence of mass downloading or data extraction — this was an intrusion, not a large-scale data breach

What you should do next

Out of caution, please change your AhaSlides password — especially if you reuse it on other services.

What we're doing

We have closed the access point, completed a full security audit, and notified the relevant data protection authorities as required under GDPR.


We're sorry this happened. We'll update this post if there are any new developments. For questions, reach us at hi@ahaslides.com — we'll keep this thread open.




— The AhaSlides Team



Update — May 9, 2026

Following further investigation, we can share more precise information about the scope of this incident.


The password exposure affected only users who changed their password during the period of unauthorised access — not all accounts. Affected users have been notified directly by email with specific instructions.


If you did not receive an email from us, your account was not affected by this incident.


We will continue to update this post as new information becomes available.




— The AhaSlides Team