Latest in Cyberattack

Image credit:

Patreon donation site's user data published online after hack

Mariella Moon, @mariella_moon
October 2, 2015
Share
Tweet
Share

Sponsored Links

Patreon, the crowdfunding platform for artists, has been hacked recently, and almost 15 gigabytes of data stolen from the site is now available online. Security researcher Troy Hunt of have I been pwned? told Ars Technica that he found 2.3 million email addresses (including his own) in the data dump, along with password and donation records, private messages and even the website's source code. Note that some screenshots of the data dump that surfaced online indicate that part of the data stolen was generated as recently as September 24th.

While Patreon uses a hashing algorithm called "bcrypt" that's normally tough to crack, identity thieves could use vulnerabilities in the source code to help them decrypt passwords associated with your email addresses. Ars says that's what hackers did to decode the sensitive info they took from Ashley Madison, the cheaters' dating website that was revealed to have very few female users. To protect yourself, make sure to change the password not just for your Patreon account, but also for your email and for any other website where you used the same details.

[Image credit: Getty Images/iStockphoto]

In this article: cyberattack, datadump, hack, patreon
All products recommended by Engadget are selected by our editorial team, independent of our parent company. Some of our stories include affiliate links. If you buy something through one of these links, we may earn an affiliate commission.
Comment
Comments
Share
Tweet
Share

Popular on Engadget

Engadget's 2020 Back-to-School Guide

Engadget's 2020 Back-to-School Guide

View
Apple is reportedly planning 'Apple One' subscription bundles

Apple is reportedly planning 'Apple One' subscription bundles

View
'Fortnite' disappears from the Google Play Store on Android

'Fortnite' disappears from the Google Play Store on Android

View
Epic's parody of Apple's 1984 ad ends with #FreeFortnite

Epic's parody of Apple's 1984 ad ends with #FreeFortnite

View
Apple removes 'Fortnite' from App Store following direct payment push

Apple removes 'Fortnite' from App Store following direct payment push

View

From around the web

Page 1Page 1ear iconeye iconFill 23text filevr