Daily Mail: Online forum Reddit confirms data breach

August 2, 2018 — The breach compromised usernames, passwords, and email addresses, but the breadth has not yet been confirmed.

Robert Capps, VP at NuData, comments on the report issued yesterday by Daily Mail, disclosing that a vulnerability in SMS 2-factor authentication on admin accounts allowed a fraudster to access personally identifiable information for Reddit users. There have been force-resets for account passwords that were compromised in the breach, and the company has vowed to improve security procedures in the future.

Reddit is doing the right thing by immediately informing its global community of the extent of the damage, advising of the steps Reddit is taking and letting its community know what they should watch for and do.
For the complete article, go here.