139 million Canva Users Suffer Security Breach

Graphic-design tool website, Canva was on Friday, May 24, 2019 compromised.
A snapshot of the Canva App via ZDNet

In an email to users of the Sydney-based company, titled - Important information about your Canva account, Canva stated that - we are aware that a number of our community's usernames and e-mail addresses have been accessed.

The Message reads in part:

We are writing to let you know that on Friday, May 24, 2019 we discovered an in-progress attack on our systems. As soon as we were notified we immediately took steps to identify and remedy the cause and have reported the situation to authorities (including the FBI). 

We are very sorry for any concern or inconvenience this may cause.
The company's letter to users also adds

The hackers also obtained passwords in their encrypted form (for technical people: all passwords were salted and hashed with bcrypt).

This means that our user passwords remain unreadable by external parties.

Canva while stating its concerns about the security of its users also advised a password change via user account dashboard.

However, in line with best practices we recommend that you change your Canva password at https://www.canva.com/account
Meanwhile, the hacker of the website known as GnostisPlayers contacted Business-technology website, ZDNet, informing about his latest hack, involving the Australian based website.

According to the report, data of about 139 million users has been taken during the breach. 

Canva which is one of the biggest internet websites recently acquired two free stock image and archive platforms - Pexel and Pixabay.

Canva, which is now up and running again, spent sometime during the weekend resolving an issue that left some users unable to download designs they created with the service, according to the Canva status page.

No comments