disqus.com
High Impact•
17,595,562 records affected
•
BreachAware
Description
In October 2017, the comment service Disqus publicly announced that they suffered a data breach. Forensics dated the original leak back to July 2012, however it surfaced several years later in mid 2017 and was widely traded within popular hacking forums. The breach contained over 17.5 million unique email addresses. The leak contained hashed passwords of users who registered directly with Disqus. For the users who registered with a social account, the leak contained references to the specific provider.
What to do if you're affected
- 1.Change your password immediately if you have an account with this service
- 2.Enable two-factor authentication (2FA) wherever possible
- 3.Check if your email appears in the breach using Have I Been Pwned
- 4.Monitor your accounts for suspicious activity
- 5.Consider using a password manager to generate unique passwords