11m other leaked users' p-words hashed with SHA-1
Passwords were among the 23 million customer records siphoned from CafePress by hackers – and the site was using the less secure SHA-1 hashing algorithm to store half of its users' credentials.
As El Reg and the rest of the security-focused media reported yesterday, CafePress had around 23 million customer records exfiltrated from its systems back in February.
That data theft came to light yesterday after Troy Hunt, operator of the Have I Been Pwned hack-tracking website, learned that the hack had taken place and that millions of peoples' credentials were circulating on hacker forums.
Infosec researcher Jim Scott told The Register that he found the swiped info after rumours of it reached Troy Hunt's ears in mid-July. The stolen data in ..
Support the originator by clicking the read the rest link below.
