This morning, Acfun barrage video network officially announced that it was attacked by hackers, which led to the leakage of user data. What is the matter? How can station a be attacked by hackers? What are the leaked user data? Let's see what happened with Xiaobian.
Station a is attacked by hackers
In the early morning of June 13, Acfun barrage video network (commonly known as station a) released the announcement on the user data leakage caused by the hacker attack on Acfun on its official website, saying that Acfun was attacked by hackers and nearly ten million user data were leaked, including user ID, user nickname, encrypted stored password and other information
According to the announcement of station a, if the user has not logged into Acfun since July 7, 2017, the password encryption intensity is not the highest level, and the account has certain security risks, please change the password as soon as possible, and if the user uses the same password in other websites, it also needs to be changed in time.
But after July 7, 2017, for the account with login behavior, station a said that the user account system has been upgraded, and the account will automatically upgrade using strong encryption algorithm strategy, and the password is safe, but if the user's password is too simple, it is also recommended to change the password.
For this user data disclosure incident, station a said, "the root cause is that we haven't made Acfun safe enough. We sincerely apologize for this. '
Station a said it would take all necessary measures to ensure the data security of users. The measures include but are not limited to recommending users with potential account security risks to modify passwords as soon as possible, establishing a special security team with internal and external technical experts, troubleshooting problems and upgrading the system security level, Comprehensively Strengthening the Acfun service system, and upgrading the technical architecture and security system.
Station a said it had collected relevant evidence and called the police.
China Kwai bullet screen comments and video surveillance sites, which were founded in 2007, are the earliest barrage video websites in China. In June 5th this year, the short video company has confirmed that the bullet screen comments website AcFun has been confirmed. A station will maintain its independent brand and maintain its independent operation and retain the original team. A
Appendix: Notice on data leakage caused by hacker attack on Acfun
Dear Acfun users:
We are very sorry that Acfun was attacked by hackers and nearly ten million user data were leaked.
If you have not logged into Acfun since July 7, 2017, the password encryption strength is not the highest level, and the account has certain security risks, please change the password as soon as possible. If you use the same password on other websites, please change it in time.
Acfun upgraded the user account system on July 7, 2017. If you log in after that, the account will automatically upgrade and use the strong encryption algorithm strategy. The password is safe. However, if your password is too simple, it is also recommended to change it.
The root cause of this major accident is that we didn't make Acfun safe enough. We sincerely apologize for this.
Next, we will take all necessary measures to ensure the data security of users. Our measures include but are not limited to:
1. It is strongly recommended that users with potential account security problems change their passwords as soon as possible. We will remind these users through announcement, microblog, wechat, SMS, QQ group, post bar, etc. in Acfun station, and please tell each other. For accounts with hidden dangers that do not actively change the password in time, they will be required to change the password when they log in again.
2. After the incident, we set up a special safety team with internal and external technical experts for troubleshooting and upgrading the system security level.
3. Next, we will make a comprehensive system reinforcement for Acfun services to upgrade the technical architecture and security system.
4. We've collected evidence and called the police.
In the future, we will keep timely communication with users, media and all walks of life.
Finally, we sincerely apologize to you again. In the future, we will use practical actions to build the safety capacity of station a, so as to truly reassure users.
Acfun barrage video network
June 13, 2018
Attachment: special tips for station a users
1. What are the leaked user data?
Including user ID, user nickname, encrypted stored password and other information.
2. Is the password disclosed by the user in plaintext or encrypted?
All Acfun user passwords are encrypted and have no clear text password.
3. Users who log in to Acfun after July 7, 2017, do you need to change the password?
The passwords of these users are automatically upgraded to stronger encryption policies, and the passwords are secure. However, if your password is too simple, it is also recommended to change it.
4. What to do for users who have not logged in to Acfun since July 7, 2017?
It is recommended that the user change the password as soon as possible. If the user uses the same password on other websites, please change it in time. Acfun will take technical measures, and these users will be required to change their password when they log in again.
If you have further questions, please send them to report@acfun.cn for feedback. Sorry again for the trouble and inconvenience!