Hostinger Hacked to Expose 14 Million Customers
Return To ArticleWeb hosting provider Hostinger has forcibly reset all of its client passwords as a “precautionary measure” following an unauthorized access of its customer database, which contains some 14 million users.
“During this incident, an unauthorized third party has gained access to our internal system API, one of which had access to hashed passwords and other non-financial data about our customers,” the Lithuania-based company said.
The security incident is said to have come to light on August 23, when it was alerted to a breach of one its servers. Using an authorization token found in the server — which grants access to systems without the need for any username and password — the attacker gained further deeper access through privilege escalation.
