Hostinger Data Breach (2019)

Hostinger, one of the biggest web hosting providers on the internet, has disclosed today a security incident that impacted its platform and users. n a blog post today, the company said a hacker gained access to an internal server, where he found an authorization token for an internal API, which he later used to make "API calls affecting information about Clients." The company said the hacker made API calls against a database storing the personal information of about 14 million customers, such as Hostinger usernames, customers' IP addresses, first and last names, and contact information such as phone numbers, emails, and home addresses. The database also stored information about user passwords in a hashed format. As a result, the web hosting provider said it decided to forcibly reset passwords for all impacted accounts, as it discovers affected customers. At the time of this article's publication, the company did not provide an exact number of impacted users, but password reset emails have started rolling out, with several users reporting receiving them on Twitter.