17Media

In April 2016 the streaming application 17Media suffered a significant data breach when a database containing information of over 4 million users was put up for sale on a darknet marketplace. The compromised data included unique email addresses, usernames, and IP addresses. Most critically, the passwords were stored using the weak MD5 hashing algorithm without any salt, making them highly vulnerable to cracking and credential stuffing attacks. The incident highlighted major security flaws in the mobile streaming platforms handling of sensitive user credentials during that period.