Data Breach

Dubsmash Data Breach

162.0M records exposed • December 2018

Hackers broke into Dubsmash and stole 162 million accounts. They sold this data along with other hacked sites in a package deal on the dark web.

What Happened

Dubsmash, a video messaging app, was breached with 162 million user records stolen. The data was sold as part of a collection of breaches totaling 620 million accounts.

Attack method: Unknown

What Data Was Exposed

Email addresses, Usernames, SHA256 password hashes, Names, Phone numbers

Is your business exposed?

What to Do If You're Affected

1.
Change your Dubsmash password
2.
Change passwords on any site using the same credentials

Lessons for Businesses

• Breaches are often sold in bundles
• SHA256 without salt is vulnerable to rainbow tables
• Mobile apps need the same security as web apps

Sources

https://www.wired.com/story/collection-one-breach/

Is your business exposed?

Check if your company data is circulating on the dark web

Free scan • No credit card required