Freepik, a website dedicated to providing access to high-quality free photos and design graphics, has disclosed today a major security breach.
The company made it official after users started grumbling on social media this week about receiving shady-looking breach notification emails in their inboxes.
ZDNet reached out to the Freepik Company on Thursday, and while we have not heard back before this article's publication, the company formally disclosed a security breach today, confirming the authenticity of the emails it's been sending to registered users for the past few days.
According to the company's official statement, the security breach occurred after a hacker (or hackers) used an SQL injection vulnerability to gain access to one of its databases storing user data.
Freepik said the hacker obtained usernames and passwords for the oldest 8.3 million users registered on its Freepik and Flaticon websites.
Freepik didn't say when the breach took place, or when it found out about it. However, the company says it notified authorities as soon as it learned of the incident, and began investigating the breach, and what the hacker had accessed.
Full article on https://www.zdnet.com/article/free-photos-graphics-site-freepik-discloses-data-breach-impacting-8-3m-users/
#databreach #freepik #flaticon #sql #yokdata