What happened in the Bookchor data breach?
Twingate Team
•
May 3, 2024
In January 2021, the online book trading platform Bookchor experienced a data breach. The incident led to the exposure of customer records, which were later traded on a popular hacking forum. The compromised data included various types of personal information. The breach was discovered later that month, and the details were added to the Mozilla Monitor database in July 2022.
How many accounts were compromised?
The breach impacted data related to approximately 498,000 individuals.
What data was leaked?
The data exposed in the breach included dates of birth, email addresses, genders, IP addresses, names, unsalted MD5 hashed passwords, phone numbers, and social media profiles.
How was Bookchor hacked?
The Bookchor data breach occurred when a hacker allegedly infiltrated the website in February 2021 and subsequently made the stolen data available online in March. The hacker claimed that Bookchor had used unsalted MD5 hash to encrypt the passwords, an encryption method that is not recommended for sensitive information due to its vulnerability to cracking.
Bookchor's solution
In response to the data breach, Bookchor took several measures to enhance the security of its platform and prevent future incidents. Although specific details about the actions taken by Bookchor are not available, users were advised to change their passwords, ensuring that the new password is at least ten characters long and contains an upper case, lower case, number, and a symbol. Additionally, users were encouraged not to use the same password twice to avoid vulnerability to credential stuffing attacks.
How do I know if I was affected?
It is unclear whether Bookchor directly notified affected users about the breach. However, if you are a Bookchor user and have not received any notification, you can visit Have I Been Pwned to check if your credentials were compromised in the breach.
What should affected users do?
In general, affected users should:
Change Your Password: Immediately update your password for the breached platform. Make sure the new password is strong and unique, not previously used on any other platform.
Reset Passwords for Other Accounts: If you've used the same or similar passwords for other online accounts, reset those as well. This is crucial as attackers often try using stolen passwords on multiple sites.
Enable Two-Factor Authentication (2FA): Activate 2FA on the breached account and consider enabling this additional security feature on all other important online accounts to significantly reduce the risk of unauthorized access.
For specific advice on Bookchor's data breach, reach out to their support team by visiting the FAQ page.
Where can I go to learn more?
If you want to find more information on the Bookchor data breach, check out the following news articles:
Rapidly implement a modern Zero Trust network that is more secure and maintainable than VPNs.
What happened in the Bookchor data breach?
Twingate Team
•
May 3, 2024
In January 2021, the online book trading platform Bookchor experienced a data breach. The incident led to the exposure of customer records, which were later traded on a popular hacking forum. The compromised data included various types of personal information. The breach was discovered later that month, and the details were added to the Mozilla Monitor database in July 2022.
How many accounts were compromised?
The breach impacted data related to approximately 498,000 individuals.
What data was leaked?
The data exposed in the breach included dates of birth, email addresses, genders, IP addresses, names, unsalted MD5 hashed passwords, phone numbers, and social media profiles.
How was Bookchor hacked?
The Bookchor data breach occurred when a hacker allegedly infiltrated the website in February 2021 and subsequently made the stolen data available online in March. The hacker claimed that Bookchor had used unsalted MD5 hash to encrypt the passwords, an encryption method that is not recommended for sensitive information due to its vulnerability to cracking.
Bookchor's solution
In response to the data breach, Bookchor took several measures to enhance the security of its platform and prevent future incidents. Although specific details about the actions taken by Bookchor are not available, users were advised to change their passwords, ensuring that the new password is at least ten characters long and contains an upper case, lower case, number, and a symbol. Additionally, users were encouraged not to use the same password twice to avoid vulnerability to credential stuffing attacks.
How do I know if I was affected?
It is unclear whether Bookchor directly notified affected users about the breach. However, if you are a Bookchor user and have not received any notification, you can visit Have I Been Pwned to check if your credentials were compromised in the breach.
What should affected users do?
In general, affected users should:
Change Your Password: Immediately update your password for the breached platform. Make sure the new password is strong and unique, not previously used on any other platform.
Reset Passwords for Other Accounts: If you've used the same or similar passwords for other online accounts, reset those as well. This is crucial as attackers often try using stolen passwords on multiple sites.
Enable Two-Factor Authentication (2FA): Activate 2FA on the breached account and consider enabling this additional security feature on all other important online accounts to significantly reduce the risk of unauthorized access.
For specific advice on Bookchor's data breach, reach out to their support team by visiting the FAQ page.
Where can I go to learn more?
If you want to find more information on the Bookchor data breach, check out the following news articles:
Rapidly implement a modern Zero Trust network that is more secure and maintainable than VPNs.
What happened in the Bookchor data breach?
Twingate Team
•
May 3, 2024
In January 2021, the online book trading platform Bookchor experienced a data breach. The incident led to the exposure of customer records, which were later traded on a popular hacking forum. The compromised data included various types of personal information. The breach was discovered later that month, and the details were added to the Mozilla Monitor database in July 2022.
How many accounts were compromised?
The breach impacted data related to approximately 498,000 individuals.
What data was leaked?
The data exposed in the breach included dates of birth, email addresses, genders, IP addresses, names, unsalted MD5 hashed passwords, phone numbers, and social media profiles.
How was Bookchor hacked?
The Bookchor data breach occurred when a hacker allegedly infiltrated the website in February 2021 and subsequently made the stolen data available online in March. The hacker claimed that Bookchor had used unsalted MD5 hash to encrypt the passwords, an encryption method that is not recommended for sensitive information due to its vulnerability to cracking.
Bookchor's solution
In response to the data breach, Bookchor took several measures to enhance the security of its platform and prevent future incidents. Although specific details about the actions taken by Bookchor are not available, users were advised to change their passwords, ensuring that the new password is at least ten characters long and contains an upper case, lower case, number, and a symbol. Additionally, users were encouraged not to use the same password twice to avoid vulnerability to credential stuffing attacks.
How do I know if I was affected?
It is unclear whether Bookchor directly notified affected users about the breach. However, if you are a Bookchor user and have not received any notification, you can visit Have I Been Pwned to check if your credentials were compromised in the breach.
What should affected users do?
In general, affected users should:
Change Your Password: Immediately update your password for the breached platform. Make sure the new password is strong and unique, not previously used on any other platform.
Reset Passwords for Other Accounts: If you've used the same or similar passwords for other online accounts, reset those as well. This is crucial as attackers often try using stolen passwords on multiple sites.
Enable Two-Factor Authentication (2FA): Activate 2FA on the breached account and consider enabling this additional security feature on all other important online accounts to significantly reduce the risk of unauthorized access.
For specific advice on Bookchor's data breach, reach out to their support team by visiting the FAQ page.
Where can I go to learn more?
If you want to find more information on the Bookchor data breach, check out the following news articles:
Solutions
Solutions
The VPN replacement your workforce will love.
Solutions