Three years after a major security breach at Tumblr, details on the scale of the incident are now emerging.
More than 65 million user account details were stolen during a hack on Tumblr. The blogging site announced on 12 May that its security had been compromised in 2013, but would not say how many users were affected.
Now a report by data breach awareness site ‘Have I Been Pwned’ (HIBP) claims that 65,469,298 email addresses and passwords were stolen. If confirmed, HIBP said that would make it the third biggest ever security breach. Tumblr has yet to comment on the report from HIBP.
In a statement issued at the time of the incident, the company said the passwords were protected by a process called “salted and hashing”, which involves turning the password into a string of digits. That means that even if your account can’t be accessed, you could be at risk of receiving spam and phishing emails.
Motherboard reported that the database is being sold by a hacker called “Peace” for just $150 (£130). It was said the low price reflected the difficulty of trying to crack users’ passwords.
For more information on our Cyber Liability Insurance cover, please contact us on 0191 482 0050.
For the full article, please click here.