Disqus
High Impact•
27,839,764 records affected
•
Dehashed
Description
In July 2012, a security breach occurred where attackers were able to compromise Disqus's system, resulting in the unauthorized access of user data. The breach, which went unnoticed until October 2017, led to the exposure of over 27.8 million user records, including email addresses, usernames, and hashed passwords. Users who logged in via social providers had only their account references compromised. Despite the delayed discovery, measures have since been taken to secure the affected systems.
What to do if you're affected
- 1.Change your password immediately if you have an account with this service
- 2.Enable two-factor authentication (2FA) wherever possible
- 3.Check if your email appears in the breach using Have I Been Pwned
- 4.Monitor your accounts for suspicious activity
- 5.Consider using a password manager to generate unique passwords