Hackers Steal 45M Records From Online Forum Operator

Hackers Steal 45M Records From Online Forum Operator

Image courtesy of (Stuart Miles) / FreeDigitalPhotos.net

Image courtesy of (Stuart Miles) / FreeDigitalPhotos.net

A hacker has pilfered tens of millions of records from a Toronto, Ont. based online forum operator.

VerticalScope, a Canadian company that operates hundreds of websites and online forums, was breached earlier this year, although the hack just came to light this week.

According to LeakedSource, hackers accessed 45 million records from 1,100 websites and forums from VerticalScope in February.

“Some of the larger domains include Techsupportforum.com MobileCampsites.com Pbnation.com and Motorcycle.com,” reads a LeakedSource blog post.“Each record may contain an email address, a username, an IP address, one password and in some cases a second password.”

LeakedSource said the size of the breach is a good indicator that VerticalScope stored all of its data on either the same or interconnected servers because “there is no other way to explain a theft on such a large scale.”

VerticalScope vice-president Jerry Orban confirmed the hack in a statement to Motherboard“We believe that any potential breach is limited to usernames, user IDs, e-mail addresses, and encrypted passwords of our users.”

The passwords used by a majority of the users were insufficient, LeakedSource added.

“Passwords were stored in various encryption methods but less than 10 percent of the domains which account for a very small amount of leaked records used difficult to break encryption (less than a couple million),” LeakedSource said.“Most of the records (over 40 million) were just MD5 with salting and this is insufficient.”

Here’s a look at the top 10 passwords used by VerticalScope customers:

Rank Password Frequency
1 123456 150,852
2 18atcskd2w 91,103
3 password 83,862
4 3rjs1la7qe 74,806
5 indya123 62,453
6 q0tsrbv488 62,308
7 india123 62,296
8 110110jp 57,746
9 sojdlg123aljg 52,406
10 thegreat123 49,068

Those whose information was accessed during the hack can remove their data from LeakedSource’s database via this link. All users are advised to change their passwords as a precaution.