Reddit Hack: Attack Bypasses 2-Factor Authentication

One of the world’s largest websites has announced a security compromise. Reddit, the self-proclaimed “front page of the Internet,” announced a security breach that occurred over a three-day period in June.

What Happened

The hacker or hackers bypassed the site’s 2-Factor Authentication associated with several employees credentialed to access sensitive data and used that access to take email addresses, server logs, and a decade-old database containing logins and passwords.

What It Means

The Reddit site has been live for thirteen years, and one of tne mitigating factors here is age. Eleven-year-old member information presents a lesser magnitude than it potentially could have been since the site’s user base has expanded significantly over the last few years.

Of greater concern is the ability of the hacker or hackers to bypass 2 factor authentication.

Read more here.