Millions of Weebly and Foursquare Accounts Hacked
Web hosting service Weebly confirmed a LeakedSource report that 43.4 million accounts were stolen in a February 2016 hack.
The stolen records included usernames, email addresses, passwords and IP addresses. Fortunately, the passwords had been stored with bcrypt, which is a strong system for scrambling passwords.
“At this point we do not have evidence of any customer website being improperly accessed,” a spokesperson said in a statement to SCMagazine. “We do not store any full credit card numbers on Weebly servers, and at this time we’re not aware that any credit card information that can be used for fraudulent charges was part of this incident.”
The company said it is notifying customers and initiating password resets.
In the same report, LeakedSource also claimed that 22.5 million Foursquare user accounts had been leaked in a December 2013 breach. ZDNet obtained a sample of the data allegedly stolen from Foursquare and found each record includes an email address, first and last name, gender, location, Facebook ID and Twitter username.
“We were able to verify the portion of the accounts that we received by enumerating disposable email accounts with the site’s password reset function.”
Foursquare denies the data originated from them.
“We have done an internal investigation and no breach has occurred,” said a spokesperson.