WordPress.com

In April 2013 WordPress.com experienced a security incident involving a breach of its servers. The parent company Automattic reported that an unauthorized party gained access to several servers. This breach potentially exposed user information including usernames email addresses and hashed passwords. The incident occurred due to a vulnerability in the system architecture that allowed attackers to bypass security layers. Although the platform uses salt for hashing passwords the company initiated a proactive password reset for affected accounts to mitigate the risk of unauthorized access to user blogs and personal data.