Dailymotion hack exposes '85 million' user accounts

Re-used passwords suspected to be used in attack against the French video service

binary on a screen with words 'hacking attack'

A hack on French video-sharing site Dailymotion has exposed millions of user account details, with email addresses and usernames reportedly leaked online.

More than 85 million accounts were compromised in the attack, 18.3 million of which had associated passwords, according to LeakedSource, a security breach notification website that revealed the attack took place on 20 October.

Although the passwords were 'hashed', or jumbled to prevent attackers reading them easily, users are likely vulnerable to targeted phishing scams.

LeakedSource, which also discovered a recent hack on AdultFriendFinder, said the identity of the person behind the latest attack is unknown.

Advertisement
Advertisement - Article continues below
Advertisement - Article continues below

Dailymotion denied that any personal data had been compromised, and said the security threat came "from outside Dailymotion", possibly a reference to re-used passwords from cyber attacks on the likes of LinkedIn.

It said in a blog post today: "The hack appears to be limited, and no personal data has been compr[om]ised. Your account security is extremely important to us, and to be on the safe side, we are strongly advising all of our partners and users to reset their passwords. When defining a new password we recommend that your new password contains eight or more characters, is not obvious (EG: password1234), and not to use the same password on multiple sites."

Experts, however, have warned that the hack demonstrates that just because a company does not hold financial data, it could still be targeted for re-used passwords. Given the large volume of data reportedly stolen, attackers will be hoping to find some passwords that have been used elsewhere on other services.

This tactic was used most recently in the attack against the National Lottery group Camelot, which was forced to suspend almost 27,000 user accounts that were accessed through re-used passwords.

Dailymotion, a Paris-based video service similar to Youtube, is the 113th most popular website in the world, according to Alexa rankings.

As with any other data breach, users are encouraged to be on the look out for suspicious emails that may be phishing scams hiding malicious links. This also includes 'spear phishing' attacks, which exploit known personal information, such as bank suppliers or links to regularly visited websites.

Advertisement - Article continues below

If you believe your details could have been stolen in this, or any other attack, LeakedSource has a handy tool for tracing if your email address is included in leaked datasets.

Featured Resources

Digitally perfecting the supply chain

How new technologies are being leveraged to transform the manufacturing supply chain

Download now

Three keys to maximise application migration and modernisation success

Harness the benefits that modernised applications can offer

Download now

Your enterprise cloud solutions guide

Infrastructure designed to meet your company's IT needs for next-generation cloud applications

Download now

The 3 approaches of Breach and Attack Simulation technologies

A guide to the nuances of BAS, helping you stay one step ahead of cyber criminals

Download now
Advertisement

Recommended

Visit/security/internet-security/354417/avast-and-avg-extensions-pulled-from-chrome
internet security

Avast and AVG extensions pulled from Chrome

19 Dec 2019
Visit/security/354156/google-confirms-android-cameras-can-be-hijacked-to-spy-on-you
Security

Google confirms Android cameras can be hijacked to spy on you

20 Nov 2019

Most Popular

Visit/operating-systems/25802/17-windows-10-problems-and-how-to-fix-them
operating systems

17 Windows 10 problems - and how to fix them

13 Jan 2020
Visit/business-strategy/public-sector/354608/uk-gov-launches-ps300000-sen-edtech-initiative
public sector

UK gov launches £300,000 SEN EdTech initiative

22 Jan 2020
Visit/hardware/354584/windows-10-and-the-tools-for-agile-working
Sponsored

Windows 10 and the tools for agile working

20 Jan 2020
Visit/web-browser/30394/what-is-http-error-503-and-how-do-you-fix-it
web browser

What is HTTP error 503 and how do you fix it?

7 Jan 2020