Social networks MySpace and Tumblr faced a major data breach. BBC recently reported that a total of 65,469,298 Tumblr accounts and over 360 million MySpace account details are offered for sale online. This is the second case of data breach in recent times. Earlier last month, around 117 million LinkedIn passwords and millions of IDs from adult dating site Fling were put up on sale on a hackers forum. In both the cases, the login details were hacked years ago.
MySpace data breach was brought into light by some catalysts, while the Tumblr data breach was first reported by Yahoo-owned blogging site. Hacking the login credentials and putting them on sale later has been the latest hacking trend. The Tumblr and MySpace accounts were hacked in the year 2013 reportedly and are being offered for sale now.
The hacked and stolen usernames and passwords of both MySpace and Tumblr are made available via the dark web. Apparently the MySpace leak is potentially more serious, being the reason that account details here are easily accessible as compared to that of Tumblr.
The report states that the MySpace usernames and passwords are simple and easy to crack whereas Tumblr passwords are “Salted and Hashed” and are a bit trickier to crack. Out of 360 million hacked MySpace accounts, around 111 million accounts are showing email address linked with the username and password. Also, there were many primary passwords used in the hacked MySpace accounts.
“We have invalidated all user passwords for the affected accounts created prior to June 11, 2013 on the old MySpace platform. MySpace is also using automated tools to attempt to identify and block any suspicious activity that might occur on MySpace accounts. We have also reported the incident to law enforcement authorities and are cooperating to investigate and pursue this criminal act”, said the social network said in a statement to BBC.
While there are no suspicious activities noted, the social networks are urging users to set a new password for their accounts.