Dailymotion video-sharing website has suffered a massive data breach, exposing 85 million accounts of users.
Dailymotion video-sharing website launched in 2005 and is considered to be the 113th most-visited website across the world.
According to the data breach notification LeakedSource, the website confirmed to have received a database of 87.6 million user accounts with unique email addresses.
The database includes email addresses, usernames and more than 18 million of the records includes password hashes. The passwords were encrypted with Bcrypt hashing algorithm, with ten rounds of rekeying and considered as secure and hard to crack.
Bcrypt hashing is a cryptographic algorithm which makes the hashing process extremely slow that would make SHA1 and MD5 password crack nearly impossible.
ZDNet also received a sample of the stolen database and confirmed that the data is indeed from the website, but Dailymotion did not respond with any comments. According to ZDNet, “We verified the data by matching up plaintext passwords with the hashed password found against the email address using a readily available online tool. In one case, the email address and password combination were unique to Dailymotion, suggesting that the data could only have come from the video-sharing site.”
