Bitly

In May 2014 the popular link shortening service Bitly suffered a significant security breach. The incident led to the unauthorized access of account credentials including email addresses and cryptographically hashed passwords. The company initially discovered that account credentials for a large portion of its user base had been compromised. Bitly responded by disconnecting all Facebook and Twitter accounts and resetting all user API keys and OAuth tokens to prevent further unauthorized access. The majority of passwords were stored using the SHA1 algorithm which is considered weak by modern standards although a small subset utilized the more secure Bcrypt algorithm.