Imgur Data Breach exposed almost 1.7 Million Users sensitive Emails and Passwords that was occurred in 2014.
Imgur is an online image sharing community which has 150 Million total users, 6 Billion page views per month, 1.5 Million Images uploading daily by Imgur visitors.
This potential Imgur Data Breach was reported by a Web security Expert Troy hunt who is actively running Data Breach services called Have I Been Pwned.
Imgur Data Breach Investigation
After his Incident Report passed to Imgur’s Chief Operating Officer via Email. Further investigation revealed, and Imgur team finally confirmed that approximately 1.7 million Imgur user accounts were compromised in 2014.
Since Imgur has never asked for real names, addresses, phone numbers, or other personally-identifying information (“PII”), so the information that was compromised did NOT include such PII.
At that time Imgur used an older hashing algorithm that leads to hackers performing Brute force attack against the Imgur Website.
Troyhunt said, “I disclosed this incident to Imgur late in the day in the midst of the US Thanksgiving holidays,” said Hunt. “That they could pick this up immediately, protect impacted accounts, notify individuals and prepare public statements in less than 24 hours is absolutely exemplary.”
Imgur Started notifying to impacted users via their registered email address, and they urged to update their passwords.
According to Imgur, we are still actively investigating the intrusion; we wanted to inform you as quickly as possible as to what we know and what we are doing in response. But Imgur said that site security had improved since the breach.