Gravatar
CriticalGravatar faced a data scraping incident in October 2020, exposing accounts and their associated email addresses.
- Records exposed
- 113,990,759 records
- Breach date
- Breach Oct 3, 2020
- Last update
- Updated Dec 8, 2021
What data was exposed?
Fields reported as compromised in this breach record.
Why does this breach matter?
In-depth analysis of the breach and its implications.
In October 2020, it was disclosed that Gravatar, a service providing globally unique avatars, had been subjected to large-scale data scraping by utilizing techniques targeting improperly protected access endpoints. Records totaling 113,990,759, containing hashed email addresses, usernames, and names, were obtained and subsequently decrypted, exposing sensitive data including email addresses. Gravatar responded with an FAQ to address concerns and outline their stance.
Impact Analysis
Understanding the scope and consequences of this breach.
- User Impact
- Exposed email addresses may lead to targeted phishing or spam attacks.
- Business Impact
- Reputational damage and potential loss of user confidence for Gravatar.
- Affected Sectors
- Social Networking
- Media Platforms
- Geographic Impact
- Global
What You Should Do
Recommended actions to take in response to this breach.
If You Were Affected
- •Change your account credentials on Gravatar and associated platforms.
- •Monitor accounts linked to the exposed email address for suspicious activity.
Preventive Measures
- •Utilize unique emails and strong passwords for each service.
- •Enable encryption protocols for sensitive account data.
Frequently Asked Questions
Common questions about this breach and what it means for you.