A significant data breach that exposed millions of consumer credentials hit music streaming provider 8tracks.
An employee appears to have mistakenly exposed 18 million user accounts, which is what led to the leak.
The employee wasn't using two-factor authentication, which suggests that the GitHub repository's lack of security was the main contributor to the hack.
The investigation into the illegal password change attempt is still ongoing, as confirmed by 8Tracks.
Source: https://securityaffairs.com/60556/data-breach/8tracks-data-leak.html
"id": "8TR34191223",
"linkid": "8tracks",
"type": "Breach",
"date": "06/2017",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"