Imgur

In September 2013 the image hosting service Imgur suffered a significant data breach. The incident involved the theft of user credentials including email addresses and hashed passwords. Although the breach occurred in 2013 it only became publicly known in late 2017 when the data surfaced online. At the time of the breach Imgur used the SHA-256 hashing algorithm which was susceptible to brute force attacks allowing attackers to crack passwords into plain text. The company subsequently migrated to Bcrypt in 2016 to improve security. The leak affected approximately 1.7 million accounts and highlighted the risks of legacy encryption methods.