Imgur says 1.7M emails and passwords were breached in 2014 hack
Image-hosting site turned meme social network, Imgur, is the latest tech service to ‘fess up to a security breach. In a blog post Friday it revealed that hackers had compromised its systems in 2014, with ~1.7M emails and passwords affected.
No additional information was apparently compromised in the breach.
“Imgur has never asked for real names, addresses, phone numbers, or other personally-identifying information (“PII”), so the information that was compromised did NOT include such PII,” it emphasizes.
While the hack occurred three years ago, Imgur says it only came to light on November 23 — when it was contacted by security researcher, Troy Hunt, who had been sent the stolen data as a consequence of running the haveibeenpwned data breach notification service.
Hunt has since tweeted to confirm that the majority of the stolen credentials were already in his database (although he appears to have tweeted the wrong date for the Imgur hack):
Source: Tech Crunch