• Skip to main content
  • Skip to primary sidebar
  • Skip to footer

Cyber Security Solutions, Compliance, and Consulting Services - IT Security

We offer It security management, data, network, & Information security services for protecting information & mitigating security risks to your organization.

  • Home
  • About Us
  • Solutions & Services
    • Security Governance
    • NETWORK SECURITY
    • CLOUD SECURITY
  • COMPLIANCE
  • SECTORS
  • Blog
  • CONTACT

Hostinger suffers from data breach and resets password for 14 million users

By kamran | At August 27, 2019

Aug 27 2019

Hostinger suffers from data breach and resets password for 14 million users

One the well-known web hosting provider Hostinger suffered from a massive data breach and to protect their customer’s data, the firm has reset password as a precautionary measure.

In the last week of august, Hostinger revealed that an authorized third party had gained access to their hashed passwords and non-financial data. More than half of their customer data was accessed by the attackers that are why they reset passwords for 14 million users.

The cybercriminal has used one of the company servers to gain access to the entire system, without requiring any username and password. Hostinger restricted the vulnerable system immediately, and contacted the respective authorities and made the access no longer available.

They received an information alert on 23 august 2019 that an unauthorized person has accessed one of their servers. The server contained an authorized token which the attacker has used to get access to the API server. The API server was used to query the details of the customers and their accounts.

The API database contained personal information of 14 million customers, including their usernames, emails, hashed passwords, first names, and IP addresses. And the hacker has gained access to almost one million customer information.

Breach Affects Over Half of Hostinger’s User Base

Hostinger has more than 29 million customers, and the recent data breach has affected half of its complete user base. The cybercriminal used the weak SHA-1 hashing algorithm to crack their customer passwords.

After the data breach, the firm has used SHA-2 a stronger algorithm to reset the password of their 14 million customers and sent out password recovery emails to their affected customers.

In the coming days, the firm will also enable two-factor authentication for their customer accounts as an additional layer of security.

Hostinger does not store any payment card record or sensitive financial data record on the API server. So no financial record has been accessed by the attacker. The client accounts and data stored on that account, websites, domain, hosted emails are not affected by the recent breach.

The firm is influencing their clients to set a new and strong password for their Hostinger accent and to be careful not to click on links sent by authorized person. They have requested their clients not to download any attachments, and communicate with anyone asking for login details and personal information.

Written by kamran · Categorized: Cyber security news

Primary Sidebar

Recents post

US Healthcare Sector Under Siege: What 2025’s Cyberattacks Reveal About Healthcare Security

From ransomware hitting … [Read More...] about US Healthcare Sector Under Siege: What 2025’s Cyberattacks Reveal About Healthcare Security

Is Your Law Firm Overlooking These 3 Critical Cyber Risks?

From juggling client deadlines … [Read More...] about Is Your Law Firm Overlooking These 3 Critical Cyber Risks?

Healthcare Cybersecurity Updates: Ransomware, Data Breaches & AI Risks

Cyberattacks targeting … [Read More...] about Healthcare Cybersecurity Updates: Ransomware, Data Breaches & AI Risks

Categories

  • AI and cybersecurity (2)
  • blockchain (1)
  • Cloud security (29)
  • Compliance (25)
  • Cyber security news (108)
  • Cyber security threats (376)
  • Cyber security tips (370)
  • Data Security (3)
  • E-Commerce cyber security (3)
  • Education cyber security (1)
  • Enterprise cyber security (7)
  • Financial organizations cyber security (4)
  • General (22)
  • Government cyber security (4)
  • Healthcare cyber security (19)
  • Information Security (2)
  • Law Firms Cyber Security (9)
  • Network security (9)
  • Newsletter (1)
  • Privacy (1)
  • Ransomware (14)
  • remote work (1)
  • Risk assessment and management (6)
  • Security management and governance (9)
  • SME Cybersecurity (2)
  • Software Security (2)
  • Supply Chain Attacks (5)
  • System security (3)
  • Uncategorized (25)
  • Vendor security (14)

Archives

Footer

Infoguard Cyber Security

San Jose Office
333 W. Santa Clara Street
Suite 920
San Jose, CA 95113
Ph: (855) 444-6004

Irvine Office
19800 MacArthur Blvd.
Suite 300
Irvine, CA 92612

Recent Posts

  • US Healthcare Sector Under Siege: What 2025’s Cyberattacks Reveal About Healthcare Security
  • Is Your Law Firm Overlooking These 3 Critical Cyber Risks?
  • Healthcare Cybersecurity Updates: Ransomware, Data Breaches & AI Risks

Get Social

  • LinkedIn
  • Home
  • About Us
  • Solutions & Services
  • COMPLIANCE
  • SECTORS
  • Blog
  • CONTACT

Privacy Policy Terms of Use Acceptable Use

Copyright © 2025 | All right reserved