Video website AcFun suffers massive privacy breach by hackers

[Destry Winant <destry () riskbasedsecurity com>]

http://www.ecns.cn/news/cns-wire/2018-06-13/detail-ifyvfaqz8676084.shtml

(ECNS) - China's popular animation and video platform AcFun announced
on Wednesday that hackers had compromised tens of millions of bits of
user data, including user IDs, nicknames, and encrypted passwords.

AcFun, known among netizens as "Station A," urged users who hadn't
logged in since July 7, 2017 to change their passwords on the platform
as soon as possible, and also modify reused passwords for any other
online accounts.

Users who had logged in since the date but used overly simple
passwords were also advised to change to stronger ones, said the
website.

The root cause of the hack was that the site was not secure enough,
said AcFun, adding that a security team composed of internal and
external technical experts was promptly assembled to upgrade security.

Evidence was collected and reported to police, AcFun said.

Prior to the hacking, online short video start-up Kuaishou, backed by
internet giant Tencent, had just bought the platform. The platform
would keep its independence in branding, operation and development,
while Kuaishou would provide support in regard to capital, technology
and other resources, according to AcFun.
_______________________________________________
BreachExchange mailing list sponsored by Risk Based Security
BreachExchange () lists riskbasedsecurity com

If you wish to Edit your membership or Unsubscribe you can do so at the following link:
https://lists.riskbasedsecurity.com/listinfo/breachexchange