Patreon's hacked data leaked online; users advised to change passwords

AC Cantuba
 Patreon instagram (@Patreon)

Patreon, an online crowdfunding website, advises its subscribers to change their passwords following a data breech they experienced last Monday.

Based on a report by Herald Recorder, valuable information about its subscribers were stolen and posted online by still unidentified hackers. The report says that about 15 GB of data consisted of "sensitive information, source code, password data & donation records" were stolen in breech.

Troy Hunt, a security researcher, confirmed that the data going around the Internet is indeed from the Patreon's server. Hunt pointed out that the hackers spent considerable effort in accessing the information that he discovered, based on the archive files that he was able to download and analyze, and that it showed more than 2.3 million email addresses including his own.

The incident happened on Sept. 28, according to a statement released by Patreon CEO Jack Conte last Thursday.

In his statement, Conte said that the thieves were able to access their database and get their users' information records, which included user names and emails, posts, some shipping addresses as well as billing addresses registered before 2014. He also said that no credit card information were stolen in the breech and "all passwords, social security numbers and tax form information remain safely encrypted with a 2048-bit RSA key."

Since the incident, the Patreon engineering team has blocked access to the said server and immediately made a move to secure the database to avoid other untoward occurrences. Conte also gave assurance that they are doing their best to make sure that their users are safe, adding that their users change their passwords as an added protection.

Patreon's statement also indicates that they use bcrypt to safeguard user passwords. This feature prevents encrypted passwords to be accessed.

Patreon's case joins the list of other hacking incidents that happened this month. Earlier, about 15 million customers of T-Mobile were affected by a breech done to credit bureau Experian, while 4.6 million users were affected in the Scottrade hacking incident last Friday. 

 

Newsletter Stay up to date with Christian Today
News
Between two cultures: an Afghan Christian in the Netherlands
Between two cultures: an Afghan Christian in the Netherlands

Esther*, who was born in Afghanistan and raised in the Netherlands after her family fled the country when she was three, speaks to Christian Today about her journey of faith, life between two cultures, and her hopes and fears for Afghanistan’s future.

The groundbreaking BBC series that brought Jesus to TV screens
The groundbreaking BBC series that brought Jesus to TV screens

Seventy years ago, in February 1956, the BBC aired the mini-series “Jesus of Nazareth”, which was the first filming of the life of Jesus to be created for television. This is the story …

Christians mobilised to oppose extreme abortion law changes
Christians mobilised to oppose extreme abortion law changes

Christians are being asked to urge peers to support amendments tabled by Baronesses Monckton and Stroud.

Thousands of Christians return to churches in north-east Nigeria despite years of terror
Thousands of Christians return to churches in north-east Nigeria despite years of terror

The faithful are returning “in their thousands, not hundreds” despite more than a decade of brutal violence.