Some Tumblr Users May Have Had Their Data Breached

November 1, 2018

Written by wukovits

Do you use Tumblr?  If so, be aware that your personal information may have been exposed.

Tumblr recently added a feature called “Recommended Blogs” that presents you with a list of blogs you might enjoy based on your past viewing habits.  It’s a great idea in theory, but unfortunately, there were problems with the way the feature was implemented.

Any blog on the recommended list was placed there in such a way that it left the blog owner’s personal information exposed, including:

  • IP Address
  • Self-Reported location
  • Email Address
  • Password

Tumblr had this to say in an open letter published on their site:

“It’s our mission to provide a safe space for people to express themselves freely and form communities around things they love.  We feel that this bug could have affected that experience.  We want to be transparent with you about it.  In our view, it’s’ simply the right thing to do.

We found no evidence that this bug was abused and there is nothing to suggest that unprotected account information was accessed.”

Even if you’ve never seen your Tumblr blog on the recommended list, your best bet is to change your password immediately. As usual, if you use the same password for Tumblr that you use on any other web property, change that password too.

Now would be a great time to break yourself of the habit of using the same password across multiple websites.  Continuing that practice makes you a ticking bomb.  Sooner or later, it’s going to explode on you, with tragic consequences that could take years to fully recover from.

We applaud Tumblr’s handling of this issue.  At a time with other social media platforms are under fire for their handling of security flaws, Tumblr’s transparency is refreshing indeed.

Used with permission from Article Aggregator

Bayou Tech

We provide solutions for your business. Find out how we can help.

Related Articles

New Graphene Technology May Increase Hard Drive Storage

HDDs are old, well understood technology. They haven't changed much in recent years. In fact, increasingly, people are writing them off, preferring SSDs for their greater speed and smaller size, even though HDDs are less expensive. The clever folks at the University...

Some Amazon Device Features May Have Security Risks

Have you heard of Amazon Sidewalk? If not, it's definitely something you should be aware of. Depending on your point of view, the new feature, which was enabled by default on a wide range of Amazon devices by default on June 8 of this year (2021) is either...

Email Unsubscribe Scam Can Easily Fool Any User

Scammers are increasingly relying on a tried and true bit of social engineering to fool unsuspecting users into unwittingly signing up to receive a flood of additional spam email. They accomplish this by blasting out an email asking recipients if they wish to...

Send us a message

Your message was sent.