DIY Photography

Your one stop shop for everything photo-video

Search

Submit A Story

EyeEm and Animoto affected by major security breach – over 47 million accounts compromised

by Leave a Comment

Last night, I received an email from EyeEm about a “data security incident.” 22 million accounts have been compromised, exposing the users’ names, email addresses, and encrypted versions of passwords. However, EyeEm wasn’t the only victim of this data breach. It’s the same one that hit 500px, and it also affected 25 million users of Animoto.

EyeEm writes that they became aware of a data security incident only recently, despite the fact that it happened on 5 July 2018. In the email, it’s noted that the incident “did not affect any commercial or financial data, nor any of your payout information or photos.” EyeEm is investigating the matter, and this is how they explain what happened:

On Tuesday 12th of February 2019, our team became aware of a data security incident, which may have affected certain EyeEm users’ data. The potentially exposed data may have included your name, email address and an encrypted version of your password.

  • Data affected does not include any payment or payout data.

  • This incident has not affected your EyeEm photos.

  • EyeEm does not store cleartext passwords anywhere. All passwords are salted and hashed, a form of encryption which means the password strings cannot simply be used to log into accounts.

  • While we only learned about the incident earlier this week, the data incident seems to have happened around a year ago.

The Register writes that this data breach affected 16 websites, stealing 617 million online account details. Other than Animoto, EyeEm and 500px which many of us use, among the hacked websites are also Artsy (1 million users) and Fotolog (16 million users).

EyeEm writes that their team “has been working around the clock to investigate the incident and secure the security of EyeEm users’ accounts.” They say that they immediately disabled all passwords as a security precaution and started informing the community. Here’s what you should do:

  • Do not reuse old passwords, and ensure you choose a strong, new password.

  • Do not use the same passwords on multiple websites.

  • Use Multi-Factor Authentication whenever possible

  • Use a password management tool. Tools like that store your passwords securely, generate new ones, and warn you if you’ve chosen an insecure one.

So, if you use EyeEm, Animoto or any of the remaining hacked websites, go and change your password immediately. You can review EyeEm’s Privacy Policy here and contact their Support team or Data Privacy Protection Officer for more information.

Related posts:

Adobe data breach exposed almost 7.5 million Creative Cloud accounts to the public Sony establishes $100 million global relief fund for those affected by the coronavirus crisis Biker shooting a 20 stairs BMX jump confronts security and removes security cart (with guard) from road A major Instagram security bug leaked users passwords as plain text
Dunja Djudjic: from diyphotography.net

About Dunja Djudjic

Dunja Djudjic is a multi-talented artist based in Novi Sad, Serbia. With 15 years of experience as a photographer, she specializes in capturing the beauty of nature, travel, and fine art. In addition to her photography, Dunja also expresses her creativity through writing, embroidery, and jewelry making.

Free Resources

Advanced lighting book

Learn photography

Recent Posts