Carbonite Is Latest Victim Of Password Reuse Attack

Back-up services provider asks users to reset passwords, claims hackers used details from earlier breached websites.

Carbonite appears to be the latest victim of a password reuse attack: the online back-up services provider this week emailed its users with instructions to reset passwords, reports SecurityWeek.

Similar breaches recently have been reported by several other online sites including Facebook, Twitter, GitHub, and GoToMyPC.

Carbonite said it had noticed unauthorized attempts to access accounts and said it fears that in some cases, hackers may have collected additional details of victims apart from their username and password. The company says its platform was not likely compromised, and that user information instead was gleaned from credentials posted online after breaches of other websites, according to the SecurityWeek report.

Meanwhile, some Carbonite users complained that the password-reset emails from the company appeared to look like a phishing campaign. The company confirmed via social media that the emails were legitimate.

Read full report on SecurityWeek.

Dark Reading’s Quick Hits delivers a brief synopsis and summary of the significance of breaking news events. For more information from the original source of the news item, please follow the link provided in this article. View Full Bio

More Insights