Imgur, the popular photo sharing site witnessed a data breach in 2014 affecting e-mail addresses and passwords of approximately 1.7 million users. But the company doesn’t seem to be much worried about the incident that took place 3 years back.
Imgur says that the investigation is still going on regarding the breach. The company believes that hackers cracked the older algorithm that was used at the time with brute force but it upgraded its encryption in 2016.
"While we are still actively investigating the intrusion, we wanted to inform you as quickly as possible as to what we know and what we are doing in response," said by an Imgur official.
According to ZDNet, Troy Hunt, who runs a pwn notification service Have I Been Pwned, did a full proof research on the 3years old data breach and obtained the data, and turned over the information to Imgur.
Even though 1.7 million accounts have been pwned, the good news is, the breached data didn't include users' personal information as Imgur never gathered real names, addresses or phone numbers of users.
Microsoft Regional Director and MVP, Troy Hunt eulogized the Imgur’s swift response to news of the data breach.
"I disclosed this incident to Imgur late in the day in the midst of the US Thanksgiving holidays," Hunt said. "That they could pick this up immediately, protect impacted accounts, notify individuals and prepare public statements in less than 24 hours is absolutely exemplary."