[BreachExchange] Video website AcFun suffers massive privacy breach by hackers

Destry Winant destry at riskbasedsecurity.com
Wed Jun 13 19:59:48 EDT 2018


http://www.ecns.cn/news/cns-wire/2018-06-13/detail-ifyvfaqz8676084.shtml

(ECNS) - China's popular animation and video platform AcFun announced
on Wednesday that hackers had compromised tens of millions of bits of
user data, including user IDs, nicknames, and encrypted passwords.

AcFun, known among netizens as "Station A," urged users who hadn't
logged in since July 7, 2017 to change their passwords on the platform
as soon as possible, and also modify reused passwords for any other
online accounts.

Users who had logged in since the date but used overly simple
passwords were also advised to change to stronger ones, said the
website.

The root cause of the hack was that the site was not secure enough,
said AcFun, adding that a security team composed of internal and
external technical experts was promptly assembled to upgrade security.

Evidence was collected and reported to police, AcFun said.

Prior to the hacking, online short video start-up Kuaishou, backed by
internet giant Tencent, had just bought the platform. The platform
would keep its independence in branding, operation and development,
while Kuaishou would provide support in regard to capital, technology
and other resources, according to AcFun.


More information about the BreachExchange mailing list