A Social Networking Company "MySpace" experienced a major data breach in which hundreds of Millions of users have had their credentials compromised.
On Tuesday, Myspace confirmed that the company was hacked in 2013 and that the stolen Myspace username and password combinations have been made available for sale in an online hacker forum.
The hacker, nicknamed Peace, who is selling the database of about 360 Million Myspace accounts with 427 million passwords, is the same hacker who was recently in the news for leaking 164 Million LinkedIn and 65 Million Tumblr accounts.
"We believe the data breach is attributed to Russian Cyberhacker 'Peace'," Myspace wrote in ablog post. "Email addresses, Myspace usernames, and Myspace passwords for the affected Myspace accounts created prior to June 11, 2013 on the old Myspace platform are at risk."
The data breach in Myspace is believed to be the largest leaks of passwords ever and even if you have not visited Myspace in years, your personal information is up for sale online.
Like LinkedIn, the stolen Myspace passwords were also stored in SHA1 with no "salting." Salting is a process that makes passwords much harder to crack.
Myspace said it has taken "significant steps" to strengthen its users' account security since the data breach in 2013 and now the company uses double-salted hashes to store passwords.
We strongly advise users who tend to reuse the same passwords on the different websites to set new passwords on those websites immediately.
Share your view.. EmoticonEmoticon