Imgur has confirmed that it is investigating a hack that took place in 2014, during which hackers stole over 1.7 million email addresses and passwords.
It all began last week when Troy Hunt – the man who runs Have I Been Pwned – was sent data stolen from Imgur almost four years ago. Hunt informed Imgur straight away on Thanksgiving, and Imgur took immediate action, resetting passwords on the accounts that were affected, and notifying users of the breach.
On November 23, we were notified about a data breach on Imgur that occurred in 2014. While we are still actively investigating the intrusion, we wanted to inform you as quickly as possible as to what we know and what we are doing in response. More: https://t.co/qElAetGVIc
— Imgur (@imgur) November 25, 2017
According to Imgur, hackers stole 1.7 million email addresses and passwords that had been scrambled with the SHA-256 algorithm. In case you’re wondering, SHA-256 isn’t generally used anymore, as there are stronger scramblers available. Also, the breach – which Imgur is still actively investigating – did not reveal any personal information like real names, addresses, phone numbers, etc. The site doesn’t ask for this information.
Despite containing data from only a small fraction of the photo-sharing site’s 150 million monthly users, the hack is still significant enough. In fact, roughly 60% of Imgur‘s hacked email addresses were already on Have I Been Pwned – which contains over 4.8 billion records. Despite being only identified now, the hack joins a list of other big ones in the past years – on sites like Disqus, LinkedIn, MySpace, and Yahoo.
Imgur’s COO Roy Sehgal announced that the company is “still investigating” how the breach actually happened, but has now improved its site security since the news broke. Also, Imgur had switched to Bcrypt – a stronger password scrambler – last year, which means that if you weren’t affected by this hack it’s highly possible that you are ok. In any case, we suggest that if you use the same email/password combination on other sites, you should probably change them immediately.
You might also like
More from Tech
Discord And PlayStation Partner To Improve Your Social And Gaming Experience
Sony has recently become a minor investor in Discord and will integrate the online chat app to Playstation early next …
EBay May Soon Start Accepting Cryptocurrencies As Form Of Payment
According to reports, eBay is open to accepting cryptocurrencies as a form of payment and is examining ways to add …
Emily Ratajkowski Is Reclaiming Her Image With An NFT
Emily Ratajkowski is reclaiming her image (and the right to earn from it), by selling a photo of herself posing …
Sony Has Already Sold 7.8 Million PlayStation 5
Sony says it has sold 7.8 million Playstation 5 consoles as of March 31st and counts over 47.6 million PlayStation …
Disaster Girl Meme NFT Sells For $500,000
NFTs continue to gain popularity, as the infamous "Disaster Girl" meme has been auctioned off for $500,000.
Spotify’s New ‘Your Library’ Makes It Easier To Find What You’re Looking For
Spotify is rolling out a new more streamlined 'Your Library' that makes it easier to discover and rediscover music and …
Record-Breaking Ethereum Overtakes Platinum In Value
Ethereum has become the 32nd most valuable asset in the world, swiftly overtaking Platinum for the first time.
Among Us Is Finally Coming To The PlayStation
Sony is finally bringing Among Us to The Playstation with the game due to come to both PS4 and PS5 …
Luxury Brands Create Blockchain Consortium To Secure Product Authenticity
European luxury brands are joining forces to secure the authenticity of their products with a blockchain-based tracking system.
