FaceUP

Have I Been PwnedConfirmed breachAdded January 13, 2019Occurred January 1, 201387,633 accountsfaceup.dkAll FaceUP breaches →

What was exposed

Dates of birthEmail addressesGendersNamesPasswordsPhone numbersUsernames

What to do if you were affected

Change your password for this account, and anywhere you reused it. Turn on two-factor authentication.
Expect more phishing and spam at this address. Treat messages that reference this company with extra caution.
Watch for text-message phishing and SIM-swap attempts on your phone number.
Be wary of targeted scams that use your personal details to sound convincing.

Details

In 2013, the Danish social media site FaceUP suffered a data breach. The incident exposed 87k unique email addresses alongside genders, dates of birth, names, phone numbers and passwords stored as unsalted MD5 hashes. When notified of the incident, FaceUP advised they had identified a SQL injection vulnerability at the time and forced password resets on impacted customers.

Frequently asked questions

What is the FaceUP data breach?

When did the data breach happen?

This data breach occurred around January 2013.

How many accounts were affected?

Around 87,633 accounts were affected.

What information was exposed?

Exposed data included Dates of birth, Email addresses, Genders, Names, Passwords, Phone numbers and Usernames.

What should I do if I was affected?

Change your password for this account, and anywhere you reused it. Turn on two-factor authentication. Expect more phishing and spam at this address. Treat messages that reference this company with extra caution. Watch for text-message phishing and SIM-swap attempts on your phone number. Be wary of targeted scams that use your personal details to sound convincing.

View on source ↗

Related breaches