Mixcloud breach of the data protection represents over 20 million user records

Mixcloud breach of the data protection represents over 20 million user records

A violation of the privacy on Mixcloud is a UK-based audio streaming platform, has more than 20 million user accounts exposed after the data has been on sale on the dark web.

the data breach happened earlier in November, after a dark web seller that supplies a portion of the data to TechCrunch, so that we can check and verify the authenticity of the data.

The data included user names, E-Mail addresses and passwords, which are displayed, are encrypted with the SHA-2 algorithm to decrypt the passwords in the vicinity of impossible. The data included account sign updates, and the last login date. It is also the country from which the user logged on to contained, your internet (IP) address, and links to the profile photos.

We reviewed a portion of the data by checking the E-Mails against the site’s sign-up function, if Mixcloud requires the user to check their E-Mail addresses.

The exact amount of the stolen data is not known. The seller said it’s 20 million records, but listed 21 million records, the on the dark web. But the data that we proposed, tried, not it was set to less than 22 million records based on unique values in the data that we received.

The data is listed for sale for $4,000 or from about 0.5 bitcoin. We do not link to the dark web listing.

Mixcloud last year, 11.5 million US Dollar cash injection from media investment company WndrCo, led by Hollywood media owner Jeffrey Katzenberg.

It is the latest in a series of high-profile data breaches in recent months. The injury data came from the same dark web-the seller, the TechCrunch alerted the StockX injury earlier this year. The garment trade claimed initially, its customer-wide password reset was for the “system updates”, but later came clean, admitting that has just been hacked, resulting in more than four million records, after TechCrunch receive a portion of the data is violated.

If not achieved, Mixcloud spokeswoman Lisa Roolant comment about a pre-formulated corporate statement, the spokesman for the answering our questions, even if the company had planned to the regulatory authorities inform the US state and EU data breach notification laws.

to comment

Co-founder Nico Perez rejected next.

As a company with headquarters in London, Mixcloud, falls under the UK and European data protection regulations. Business rules can face a fine of up to 4% of their annual turnover for breaches of the European GDPR.

Corrected to clarify in fourth paragraph that the E-Mails were checked against the site sign-up function, and not the password-reset function. Updated to include comment from the company.


Released on Fri, 29 Nov 2019 19:18:20 +0000

Leave a Comment