Myspace.com

Critical Impact

1 January 2008

•

360,193,700 records affected

•

Dehashed

Search on Google

Description

In approximately 2008, Myspace experienced a significant data breach that compromised around 360 million accounts. The intrusion exposed email addresses, usernames, and hashed passwords, specifically SHA1 hashes of the first 10 characters of the password converted to lowercase and stored without a salt. The data later surfaced in May 2016, when it was made available on a dark market website. The precise date of the breach remains unclear, but analysis indicates the breach occurred around eight years prior to the data's public release.

What to do if you're affected

1.Change your password immediately if you have an account with this service
2.Enable two-factor authentication (2FA) wherever possible
3.Check if your email appears in the breach using Have I Been Pwned
4.Monitor your accounts for suspicious activity
5.Consider using a password manager to generate unique passwords

Learn More About Data Breaches

Have I Been Pwned

Check if your data has been compromised

ENISA

EU Agency for Cybersecurity

Myspace.com Data Breach | Cyber Hub