Header Ads








Over 43 Million Weebly Accounts Hacked

Over 43 Million users have been stolen from the San Francisco-based website building service Weebly, according to breach notification site LeakedSource, who had already indexed a copy of the stolen data that it received from an anonymous source.

LeakedSource posted details of the cyber attack in its blog post on Thursday explaining what happened. The attack believed to have been carried out in February 2016.

"Unlike nearly every other hack, the Co-founder and CTO of Weebly Chris Fanini fortunately did not have his head buried deeply in the sand and actually responded to our communication requests," LeakedSource says. 
"We have been working with them to ensure the security of their users meaning password resets as well as notification emails are now being sent out."

The stolen data contains personal data of 43,430,316 Weebly customers, which includes usernames, email addresses, passwords, and IP addresses.




Stolen passwords were stored using the strong hashing function "BCrypt," making it difficult for hackers to obtain user's actual password.


These password hashes also believed to have used a Salt – a random string added to the hashing process to further strengthen passwords in order to make it more difficult for hackers to crack them.

Weebly confirmed the data breach, saying the company has started notifying affected customers and already initiated password reset process and new password requirements.

LeakedSource has also published details of a data breach affecting more than 22.5 million customers of location-based check-in service Foursquare, though the company denied the claims.

Even if stolen passwords are much difficult to crack, it's still a good idea to change the password for your Weebly account, just to be safe.


This is just the latest in a string of megabreaches. Yahoo recently revealed that data for 500 million users were stolen, and breaches of Dropbox, MySpace and Tumblr have all come to light this year.

source: www.leakedsource.com

No comments

blogmytuts. Powered by Blogger.