ShellCodeX Breach Report
imgur Data Breach
imgur.com
Verified breach
Passwords exposed
Accounts exposed
1,749,806
Breach date
01 Sep 2013
Added to tracker
25 Nov 2017
Data classes
2
What happened
In September 2013, the online image sharing community imgur suffered a data breach. A selection of the data containing 1.7 million email addresses and passwords surfaced more than 4 years later in November 2017. Although imgur stored passwords as SHA-256 hashes, the data in the breach contained plain text passwords suggesting that many of the original hashes had been cracked. imgur advises that they rolled over to bcrypt hashes in 2016.
Exposed data
Email addresses
Passwords
Recommended actions
- Change your imgur password immediately, and update it anywhere you reused the same password.
- Enable two-factor authentication on the affected account and on your critical services (email, banking).
- Watch for targeted phishing emails referencing imgur โ attackers weaponise breach data quickly.
- Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected?
Check whether your email address appears in this breach.
Check on HIBP