ForumCommunity

In early 2017 the Indian professional training and skill evaluation platform Hub4Tech suffered a significant data breach. The security incident was the result of a SQL injection vulnerability which allowed unauthorized actors to extract sensitive user information from the database. The breach exposed approximately 37 thousand unique user records. Investigations revealed that the leaked data included sensitive credentials where passwords were stored using the weak MD5 hashing algorithm without any salt making them highly susceptible to cracking and subsequent unauthorized account access.