HackDig : Dig high-quality web security articles for hacker

8tracks Hit With Breach of 18 Million Accounts

2017-06-30 16:25
Hackers attack Internet radio user database, gaining access to email addresses and encrypted passwords.

Hackers broke into Internet radio site 8tracks, resulting in a database breach of 18 million users' email addresses and encrypted passwords, according to an International Business Times report.

The online music site says in a blog post that only users who signed up for the service using their email got hit. Customers who rely on Google or Facebook to authenticate themselves  did not have their passwords pilfered, 8tracks says.

The company believes an employee's Github account, which did not have two-factor authentication, served as the attack vector. When Github alerted the 8tracks employee of an unauthorized attempt to change their account password, that is when 8tracks realized a breach had ocurred.

"We do not believe this breach involved access to database or production servers, which are secured by public/private SSH-key pairs. However, it did allow access to a system containing a backup of database tables, including this user data. We have secured the account in question, changed passwords for our storage systems, and added access logging to our backup system," 8tracks states in its blog.

Read more about the breach here.


Source: =cm_?9629231/di-d/d/stnuocca-noillim-81-fo-hcaerb-htiw-tih-skcart8/duolc/moc.gnidaerkrad.www

Read:252 | Comments:0 | Tags:No Tag

“8tracks Hit With Breach of 18 Million Accounts”0 Comments

Submit A Comment

Name:

Email:

Blog :

Verification Code:

Announce

Share high-quality web security related articles with you:)

Tools

Tag Cloud

Keywords