MySpace Data Breach
Data breachAbout
The MySpace data breach, disclosed in 2016, is one of the largest in history, affecting approximately 360 million user accounts. The breach involved the compromise of usernames, passwords, and email addresses from MySpace's old platform, which was revamped in June 2013. The stolen data included over 427 million passwords, making it a significant security incident. The breach is attributed to a cybercriminal known as "Peace," who is also linked to breaches at LinkedIn and Tumblr. MySpace responded by invalidating passwords for affected accounts and enhancing security measures. Users were advised to change their passwords, especially if they reused them on other sites. The breach highlighted the risks of outdated security practices, as the passwords were stored in unsalted SHA-1 hashes, making them easier to crack. MySpace's response included strengthening password storage to double-salted hashes and monitoring for suspicious activity. The incident underscores the importance of robust security measures and the risks associated with password reuse across multiple platforms.
