Network Security
Vulnerability Management
Privileged Access Management
Endpoint Security
Threat Hunting
Unified Endpoint Management
Email & Collaboration Security
Contents:
Freecycle, a global online platform promoting the exchange of used items, announced a significant data breach affecting over 7 million of its users.
The nonprofit organization became aware of the intrusion on August 30th, though the stolen information had been available for sale on a hacking forum since May 30.
The platform has nearly 11 million members spanning over 5,300 towns globally.
What Type of Data Was Compromised?
The compromised data consists of usernames, User IDs, email addresses, and MD5-hashed passwords. No other user details were revealed in the breach.
Among the compromised accounts was Deron Beal, Freecycle’s founder, explains Bleeping Computer. His accessed credentials gave the hacker a way into member profiles and forum discussions.
Freecyle’s Data for Sale on a Hacking Forum (Source)
In response to the breach, Beal posted a notice on Freecycle’s homepage, urging members to change their passwords:
On August 30th we became aware of a data breach on Freecycle.org. As a result, we are advising all members to change their passwords as soon as possible. We apologize for the inconvenience and would ask that you watch this space for further pending background.
Daron Beal, Freecyle Founder and Executive Director (Source)
Members with matching credentials on other platforms have also been urged to alter them, as a precaution against potential account breaches.
For users wishing to reset their Freecycle passwords, two methods are provided:
- From their profile’s settings and scrolling down to the Password Reset section
- From the password reset page via email
Freecycle has alerted the authorities about the breach. The platform also warned users to be prepared for an uptick in spam emails.
Members were further cautioned to be wary of phishing attempts and advised against clicking email links or downloading unexpected attachments.
Freecycle’s announcement is available here.
If you liked this piece, follow us on LinkedIn, Twitter, Facebook, and YouTube for more cybersecurity news and topics.
Madalina, a seasoned digital content creator at Heimdal®, blends her passion for cybersecurity with an 8-year background in PR & CSR consultancy. Skilled in making complex cyber topics accessible, she bridges the gap between cyber experts and the wider audience with finesse.
