123RF Breach
Date: November, 2020123RF is a stock photography company. It sells royalty-free imagery to anyone willing to buy and has been expanding since 2020 to help include the growing web-based content market.
What Was the Breach?
The breach was an attack on the photo-managing site. The site’s owner, Inmagine Group, immediately contacted authorities and found that the violation affected certain account information, including passwords. Inmagine assured users that the passwords were hashed, but Bleeping Computer could easily unencrypt the passwords of several accounts.
How Did the Breach Occur?
The breach occurred when a third party accessed 123RF’s internal systems. These systems housed customers’ emails, names, company names, hashed passwords, addresses, phone numbers, IP addresses, and PayPal emails if the victims used PayPal. Now, the hacker has access to the personal information of these people.
When Did This Breach Occur?
This breach occurred in November 2020.
Who Does the Breach Impact?
The breach impacts a good portion of the 123RF consumer base. The hacker could quickly launch multiple attacks on the victims, including phishing attacks and other types of scams. Anyone victimized by the breach must remain vigilant and keep themselves safe.
How Many Files Does the Breach Affect?
The breach affects over 8.3 million consumer files. The data was copied from the system, not stolen, so 123RF still had access to the information when customers used the site. Therefore, the customers can still use the site, though the owners are recommending anyone affected by the breach change their password to decrease risk.
Recent Breaches
Cisco Duo Breach
Cisco Duo is an access security provider that offers solutions for small business and commercial control products, including multi-factor authentication (MFA), single sign-on, and access control services....
AT&T Breach
American Telephone and Telegraph Company (AT&T) is the fourth-largest telecommunications provider, behind Verizon, Comcast, and China’s state-funded communications solution...
Fujitsu Limited Breach
Fujitsu Limited is the world’s sixth-largest IT service provider. Based in the Minato City ward of Tokyo, Japan, Fujitsu offers various technology solutions for personal and commercial use...
Cybersecurity and Infrastructure Security Agency Breach
The CISA collaborates with other government agencies to notify victims of breaches and respond to threats. These include the Federal Bureau of Investigation, the Multi-State Information Sharing & Analysis...
Roku Inc. Breach
Roku is a global streaming and entertainment organization. It offers solutions for direct streaming, live channels, music, niche channel entertainment, smart home devices, travel technology, audio options,...