43M Last.fm Passwords Hacked in 2012 Breach

...

In 2012, Last.fm revealed that it had been hacked. But we're just now learning the severity of the breach—and it's pretty bad.

According to a report from LeakedSource, the four-year-old Last.fm breach affected more than 43 million users.

To be really clear, the stolen data set contains 43,570,999 records, each which includes a username, email address, password, join date, and "some other internal data," reported LeakedSource, which uncovered information about a number of other high-profile breaches as of late.

Last.fm knows about the incident, and in June 2012—three months after the breach occurred—issued this statement:

"We are currently investigating the leak of some Last.fm user passwords. This follows recent password leaks on other sites, as well as information posted online. As a precautionary measure, we're asking all our users to change their passwords immediately."

Up until now, the number of records involved in the breach was unknown.

The UK-based online music service did not immediately respond to PCMag's request for comment.

Passwords were stored using unsalted MD5 hashing, which isn't saying much.

"This algorithm is so insecure it took us two hours to crack and convert over 96 percent of them to visible passwords," LeakedSource said.

Unsurprisingly, the most popular password was "123456," used by more than 250,000 people; "password" came in second, followed by "lastfm." Rounding out the top 10 most popular Last.fm passcodes of the year were the equally bad "123456789" (number four), "qwerty" (five), "abc123" (six), "abcdefg" (seven), "12345" (eight), "1234" (nine), and "music" (10).

For more, see PCMag's review of Last.fm and the slideshow above.

Categories
GAMES
0 Comment

Leave a Reply

Captcha image


RELATED BY

  • 5300c769af79e

    T-Mobile Reportedly Content With Offering Unlimited Data Plan

    Back in November of 2015, T-Mobile raised the price of its unlimited data plan, alongside the announcements of UnCarrier X.While T-Mobile can still be one of the only major carriers in the US to actively promote an unlimited plan, Binge On is automatically turned on once a line is activated.
  • 5300c769af79e

    Samsung, your phones are exploding. Don’t just stand there, do something!

    Although the company issued a voluntary recall immediately after it received multiple reports of exploding Note 7 phones from around the world, that recall has been poorly organized, terribly communicated, and even more disastrously executed.Related: Galaxy Note 7 Recall: How To Get A Refund or Exchange Worst of all, even if you manage to get a replacement Galaxy Note 7 from Samsung, it might explode, too.
  • 5300c769af79e

    Poll: Do You Own a VR Headset?

    Honestly, I don’t think the big VR push has really even begun yet.I say that because the biggest player right now, is Samsung, with its mobile-powered Gear VR headset.
  • 5300c769af79e

    HTC Desire 626 (Verizon Wireless)

    Affordable, sensibly sized mid-range smartphones on Verizon Wireless are hard to come by.That leaves the HTC Desire 626 ($192; 16GB) as one of the few midrange options the carrier offers in the 5-inch range.