Coachella

In February 2017 a security breach involving the Coachella music festival website and its associated message boards was identified. Unauthorized parties gained access to a database containing nearly 600000 records. The compromise included sensitive user information such as account usernames and salted MD5 password hashes. The breach allegedly originated from the official website and an older forum platform used by festival attendees. The stolen data was subsequently listed for sale on dark web marketplaces by the threat actor known as Sh_0. This incident highlighted vulnerabilities in legacy forum software and the risks associated with storing MD5 hashes which are susceptible to cracking attempts.