Tumblr Gets Data Breach And Advice To Its User’s To Change New Password
At the starting of Thursday, Tumblr initiated without any delay the users to reset their passwords and saying that a third-party had come into the control of the old Tumblr login information.
- Third Party Tools obtained Access to set of Tumblr User Email Address.
- Tumblr Investigating the Matter
- Tumblr Advice to users to set a new Password
According to the company, the data is from near the beginning 2013, earlier than Tumblr was obtained by Yahoo. Moreover, the uncovered passwords were not saved in clear text and this is said by Tumblr, they were salted and hashed format.
Tumblr has not discovered any kind of proof that the disclosed information was used to access the accounts. Nevertheless, as the purpose of safety measure, the passwords of the infected users will be reset.
Additionally, the company did not identify that how many users were infected. Logging into one of the test accounts of Tumblr we were encouraged to change our password. So that was your reporter when logging into his personal account.
Whereas another account we tested that did not obtain a quick to change their password, so that’s why it seems that it has only a portion of the 550 million Tumblr users which are infected. Apparently, all of the users accounts generated after 2013 which are not in any danger.
There are no efforts were made to use the user accounts that were already cooperated.
Some of the users stated on Twitter that they have been inculcated to change their password of Tumblr when they trying to log in to their account.
Even the security staff of Tumblr say that they have not seen any signs of anyone trying to use the revealed data to sign into corporate accounts.
Well at the end of April, Spotify appeared a same kind of event, when hundreds of user account full with the right to use the confidential data which were revealed on the Web. Spotify left without any enormous data hack which was blaming the specific users that use again their passwords of Spotify on the other websites.
Here is given below the Yahoo's full security announcement
regarding the recent user info leak.
“We recently learned that a third party had obtained access to a set of Tumblr user email addresses with salted and hashed passwords from early 2013, prior to the acquisition of Tumblr by Yahoo,” Tumblr said. “As soon as we became aware of this, our security team thoroughly investigated the matter. Our analysis gives us no reason to believe that this information was used to access Tumblr accounts. As a precaution, however, we will be requiring affected Tumblr users to set a new password.”