Over 87 million user accounts with unique emails were leaked following a breach of popular French video-sharing website DailyMotion in October, announced LeakedSource. Some 20 to 30 hacks are further to be revealed by the end of the year.
The search engine claims to have gained access to a database that contains usernames, email addresses and other personal information of DailyMotion account owners, including approximately 18 million passwords hashed with Bcrypt and “with 10 rounds of rekeying”.
DailyMotion, launched in 2005, is one of the most popular video-sharing platforms, after YouTube. The company confirmed the breach earlier today in a blog post.
“It has come to our attention that a potential security risk, coming from outside Dailymotion may have comprised the passwords for a certain number of accounts. The hack appears to be limited, and no personal data has been comprised,” reads the post.
The identity of the attacker is unknown. DailyMotion is expected to start informing users about the breach. As with other massive hacks, users and company partners can check on LeakedSource if their emails have been exposed. To be safe, they are advised to immediately change their passwords, especially if reused for other accounts, to avoid being exposed to identity theft and phishing attempts.
“When defining a new password we recommend that your new password contains eight or more characters, is not obvious (EG: password1234), and not to use the same password on multiple sites,” the company recommends.