The most popular internet radio service provider suffered a data breach compromising 18 million user accounts that were authenticated through Github. The exposed data included usernames, email addresses, and partially encrypted passwords. Accounts authenticated via Google or Facebook authentication were not affected by the hack.
The company advised users to change passwords, not to use the same password on every site and, wherever possible, to use two-factor authentication such as an Authenticator app, SMS or a FIDO key.
Want to discuss this case? You can purchase a 30 minute conference call with our analysts to discuss this case and the implications it has for your organisation. Just select the time and date that works for you: