Tasken
Advanced
- Joined
- 22.09.20
- Messages
- 127
- Reaction score
- 960
- Points
- 63
Bleeping Computer reports that over the weekend, a hacker forum put up for sale a database of the popular 123rf photo Bank containing about 8,300,000 entries. The seller States that the dump was made in 2020.
Journalists have studied a sample of data published by hackers and write that the dump does not contain financial information, but you can find the full user name, email address, hashed passwords (MD5), company name, phone number, address linked to PayPal email address (if used), as well as IP address.
At the beginning of this week, journalists notified the company Inmagine Group, which owns 123rf, about their discovery, and received a response that the server in the data center was indeed hacked, and hackers managed to steal user data. The company is already investigating the incident together with experts from law enforcement agencies.
At the same time, Inmagine Group says that the dump offered for sale is not the latest copy of the customer database for 2020. This seems to be true, as the most recent samples studied by Bleeping Computer were dated October 27, 2019.
Although the company said that all customer passwords were encrypted, it is obviously about MD5, that is, hacking such passwords, unfortunately, will not cause hackers any special problems.
Journalists have studied a sample of data published by hackers and write that the dump does not contain financial information, but you can find the full user name, email address, hashed passwords (MD5), company name, phone number, address linked to PayPal email address (if used), as well as IP address.
At the beginning of this week, journalists notified the company Inmagine Group, which owns 123rf, about their discovery, and received a response that the server in the data center was indeed hacked, and hackers managed to steal user data. The company is already investigating the incident together with experts from law enforcement agencies.
At the same time, Inmagine Group says that the dump offered for sale is not the latest copy of the customer database for 2020. This seems to be true, as the most recent samples studied by Bleeping Computer were dated October 27, 2019.
Although the company said that all customer passwords were encrypted, it is obviously about MD5, that is, hacking such passwords, unfortunately, will not cause hackers any special problems.