Dailymotion, a world renowned video sharing website has suffered a massive data breach in which a hacker whose identity is unknown successfully stole 87 million accounts and shared with LeakedSource, a data breach notification website.
The data breach which took place on 20th October 2016 allowed the hacker to steal usernames, emails and hashed passwords of Dailymotion’s registered users in which around 18 million users had their passwords protected with bcrypt hashing algorithm which is a good news since they are hard to decrypt.
Also Read: New Adobe Flash 0-Day Using Dailymotion.com In Malvertising Campaign
ZDNet has also verified the breach and found several plain text passwords matching with the encrypted ones. However, it is still unclear how it was possible for the hacker to steal such a massive number of accounts, if Dailymotion was aware of this breach and if Dailymotion ever notified its users about this breach.
France-based Dailymotion is one of the most visited video-sharing websites after YouTube. Its popularity can be seen on Alexa which shows Dailymotion is 113 among most visited websites in the world.
87 million accounts for video sharing platform DailyMotion was recently #leaked online. #breach #infosec #data #security
— News About Security (@BigSecurityNews) December 5, 2016
If you have an account of Dailymotion we suggest you changing its password for your own security. We have also contacted Dailymotion and in the case of receiving their response, we will update this article.
Update: 11:19 PM Monday, December 12, 2016, Greenwich Mean Time (GMT)
Dailymotion has finally acknowledged the data breach. The video-sharing website is sending emails to users urging them to reset their password and use a strong password.
Also Read: New Adobe Flash 0-Day Using Dailymotion.com In Malvertising Campaign
The year 2016 has been a bad year for the Internet. From Internet’s largest DDoS attack to largest-ever data breaches the Dailymotion hack should not be surprising for its users.
Earlier this year, millions of user account from Twitter, LinkedIn, MySpace, Adult Friend Finder, Weebly, FourSquare, Rambler, Dropbox, Last FM, Mail.Ru, Dota2, Epic Games, VerticalScope, Clash of Kings and VK.com were stolen and leaked online. Let’s see what’s coming next.
