In the past few years, the number of data breach reports has been increasing. What should be blamed for it? The bad passwords or we can just say no longer Internet seem to be safe. In what appears to be a breach analogous to the massive LinkedIn and Dropbox catastrophes of the past, 8tracks, which is a well-known Internet radio service, has been hacked hypothetically leaving millions of accounts exposed.
8tracks, on its corporate blog, confirmed it has suffered a safety breach:“We received reliable reports of our user database’s copy has been leaked, comprising the encrypted passwords and email addresses of only those users of 8tracks that signed up with the use of email. Passwords stored by 8tracks use one-way hashes—to make certain that they remain tough to access—instead of a plain text format. The decryption of these password hashes can be done using brute force attacks only, which is time-consuming and expensive, even for a single password.”
Supposedly, information of millions of users dating back to 2008 was provided to hackers owing to the data breach, according to reports. Of an entire 18 Million accounts, a dataset of 6 Million 8track usernames, hashed passwords, and email IDs were obtained from the site. Something recently cracked by Google, it was observed that the passwords were hashed by means of ageing but still broadly utilized SHA1 algorithm, making them insecure.
The Internet radio service being alert of the breach is still advising to amend their 8tracks passwords to its users and also on any other website where there may be the usage of the same password. The company said that it will be informing its users and has recognized the attack vector that the hacker has used, protecting the accounts in question. They also assure that the stolen information did not consist of credit card details.
The 8tracksusers may want to modify their passwords as well as ascertain that the identical password is not being used somewhere else. It also recommended to use password managers such as 1password or LastPass, but maybe not OneLogin, and a 2-factor authentication. Keep your data safe..!!!