According to the security breach service, the DailyMotion breach appears to have taken place around October 20, 2016, which is 47 days ago.
Based on samples received and analyzed by reporter, the stolen information includes user IDs, emails, and for some users, hashed passwords.
The passwords were protected with the Bcrypt hashing algorithm, with 10 rounds of rekeying. Over 18 million records have a password listed.
18 million users need to change their passwords because not all accounts included an associated password, most users are currently in danger of having their email address added to various mass-mailing lists and might see an uptick in spam messages.
source@BleepingComputer
source@BleepingComputer
