Home Security
PC Matic
PC Matic VPN
More Products
Support Unlimited
Identity Theft Protection
PC Magnum
Threat Awareness
How PC Matic Protects You
SuperShield Whitelist
Compare PC Matic
Norton
McAfee
Avast
AVG
Business Protection
PC Matic Pro
PC Matic MSP
Solutions
Allowlisting
Script Enforcement
Device Control
Patch Management
Remote Tools
Integrations
Server Security
Learn More
Resellers
Affiliates
Resources
Case Studies
Compare PC Matic Pro
ThreatLocker
Airlock Digital
VMware Carbon Black
AppLocker
For Federal
Partner Programs
Managed Service Providers
Channel Partners
Affiliate Partners
OEM Partners
Resource Center
All Resources
Case Studies
Data Sheets
User Guides
White Papers
Blog Resources
PC Matic Blog
Business Security
Home Security
Cyber News
Scam Alerts
Customer Service
Home Support
Business Support
Learn More
Getting Started
Knowledgebase
Tech Support Scams
Fake Virus Scams
Tools & More
Ransomware Center
Internet Speed Test
PC Matic
About
Careers
Learn More
Industry Recognition
Leadership
Commercials
Stay Up-to-Date
Newsroom
Blog
Events
TechTalk Podcast
Home Customers
My Account
PC Matic App
Add a Device
Renew Subscription
Business Customers
Business Login
Business Support
Search

MySpace & Tumblr Breach Totals 425M Records

Two social media platforms were hacked years ago, but the data is now available to the highest bidder…

Years have passes since the Tumblr and MySpace breaches, yet now appears be to the time to sell those 425 million records.  Security researcher, Troy Hunt, reported to BBC News concerns that the MySpace, Tumblr, and LinkedIn sales of personal data could be correlated somehow; as the hackers sat on this data for years, yet in the past month these hacked credentials are showing up on the dark market.

MySpace representative reported the company is monitoring the site closely for any fraudulent activity on accounts and is working closely with the authorities to help pursue the criminals behind this hack.

PC Pitstop security expert, Dodi Glenn, made the following statement to Global Security Magazine and SC Magazine regarding the MySpace hack:

“The use of weak passwords and unencrypted database passwords still presents a serious security problem to individuals and companies alike, and its one of the top causes of data breaches. The MySpace hack may be the biggest breach in a long time. While many people may feel MySpace isn’t as popular as Facebook/Twitter, etc., the bigger problem is password reuse. With username and password reuse, an individual may use the same email address or username and password on site A that they would use on sites B and C. When site A gets compromised, the hacker uses an underground tool to check other various sites to see if this account login and password combination exists elsewhere, not associated with MySpace.”

Tumblr reported their data breach in 2013, and reported credentials were stolen including email addresses and “salted” passwords.  The term “salted” means the administrator added various characters to the user passwords in an attempt to make decryption more difficult in the event of a breach.  Although the passwords may be useless to the hackers, the email addresses are not.  These users are now a prime target for phishing attacks.

The biggest pieces of advice we can give to those who have potentially been impacted by these breaches are as follows:

  • Be incredibly cautious with any email correspondence that appears to come from these two social media sites.  The best option would be to visit their sites directly instead of using a link through a email, as it could be a phishing attempt.
  • If you have used the same user ID or password for any other accounts that were linked to these two platforms, change them immediately.

Stop Responding to Threats.
Prevent Them.

Get Protected

Want to get monthly tips & tricks?

Subscribe to our newsletter to get cybersecurity tips & tricks and stay up to date with the constantly evolving world of cybersecurity.

Related Articles