LiveJournal Breach - 2014
Date: January, 2014LiveJournal is a platform for bloggers to connect and share their pieces. Readers can comment on the blogs they read, allowing them a different kind of interaction with the authors than they would receive reading on another site.
What Was the Breach?
The breach resulted from an unauthorized party gaining access to a LiveJournal database. The information in said database was sold on the black market, allowing an unknown number of criminals and bad actors to access millions of victims’ personally identifying information.
How Did the Breach Occur?
The breach occurred when a hacker managed to infiltrate an LJ database. An investigation done by ZDNet proved the existence of the database and found various ads claiming to be selling or willing to buy the victims’ PII. After, LiveJournal refused to admit to the breach.
When Did This Breach Occur?
This breach occurred in 2014.
Who Does the Breach Impact?
The breach impacts a large number of LiveJournal users. Some people have claimed to receive extortion emails from the hacker demanding money. The hacker threatened the recipients, claiming they could access their passwords and usernames, among other data.
How Many Files Does the Breach Affect?
The breach affected approximately 26.3 million individuals and files. The hacker also used the information taken in this breach in numerous attempted credential stuffing attacks on Dreamwidth, a similar platform. Credential stuffing occurs when a hacker uses emails, usernames, and passwords attained in another security breach to achieve access to other websites or systems; this relies on password recycling.
Recent Breaches
Cisco Duo Breach
Cisco Duo is an access security provider that offers solutions for small business and commercial control products, including multi-factor authentication (MFA), single sign-on, and access control services....
AT&T Breach
American Telephone and Telegraph Company (AT&T) is the fourth-largest telecommunications provider, behind Verizon, Comcast, and China’s state-funded communications solution...
Fujitsu Limited Breach
Fujitsu Limited is the world’s sixth-largest IT service provider. Based in the Minato City ward of Tokyo, Japan, Fujitsu offers various technology solutions for personal and commercial use...
Cybersecurity and Infrastructure Security Agency Breach
The CISA collaborates with other government agencies to notify victims of breaches and respond to threats. These include the Federal Bureau of Investigation, the Multi-State Information Sharing & Analysis...
Roku Inc. Breach
Roku is a global streaming and entertainment organization. It offers solutions for direct streaming, live channels, music, niche channel entertainment, smart home devices, travel technology, audio options,...