Account Data Breach: SitePoint
Shared data has already been used in attacks
In June 2020, the web development site SitePoint suffered a data breach that exposed over one million customer records. Impacted data included email and IP addresses, names, usernames, bios and passwords stored as bcrypt hashes.
Of the accounts listed, approximately 17 UMBC accounts were indicated in this potential breach. The victims are being notified via their UMBC emails. If you have an account with SitePoint, please contact them to see if you have been affected by this breach.
More information on the SitePoint breach (and subsequent extortion attempts) can be seen at an article from Bleeping Computer: https://www.bleepingcomputer.com/news/security/sitepoint-discloses-data-breach-after-stolen-info-used-in-attacks/
If you have any questions or concerns, please email us at security@umbc.edu. Information about this potential breach was provided to us by Have I Been Pwned (HIBP): https://haveibeenpwned.com.
Receive any suspicious emails?
Forward it to security@umbc.edu along with the email headers. For instructions, visit: https://wiki.umbc.edu/pages/viewpage.action?pageId=1867970.
Follow us on myUMBC:https://my3.my.umbc.edu/groups/itsecurity.
Tags:
Posted: October 18, 2022, 4:05 PM
