Canva that's behind the eponymous graphic design service suffered from a cyber attack which compromised the data of it's 139 million users.
Stolen data included details such as customer usernames, real names, email addresses, and city & country information, where available.
For 61 million users, password hashes were also present in the database.
The passwords where hashed with the bcrypt algorithm, currently considered one of the most secure password-hashing algorithms around.
The company said that they securely store all of the passwords using the highest standards and have no evidence that any of their user's credentials have been compromised.
Source: <a href=""Canva that's behind the eponymous graphic design service became aware about a cyber attack which compromised the data of it's 139 million users. Stolen data included details such as customer usernames, real names, email addresses, and city & country information, where available. For 61 million users, password hashes were also present in the database. The passwords where hashed with the bcrypt algorithm, currently considered one of the most secure password-hashing algorithms around. The company said that they securely store all of the passwords using the highest standards and have no evidence that any of their user's credentials have been compromised."">"Canva that's behind the eponymous graphic design service became aware about a cyber attack which compromised the data of it's 139 million users. Stolen data included details such as customer usernames, real names, email addresses, and city & country information, where available. For 61 million users, password hashes were also present in the database. The passwords where hashed with the bcrypt algorithm, currently considered one of the most secure password-hashing algorithms around. The company said that they securely store all of the passwords using the highest standards and have no evidence that any of their user's credentials have been compromised."
TPRM report: https://scoringcyber.rankiteo.com/company/canva
"id": "can225419323",
"linkid": "canva",
"type": "Data Leak",
"date": "05/2019",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': 139000000,
'industry': 'Graphic Design',
'name': 'Canva',
'type': 'Company'}],
'data_breach': {'data_encryption': 'bcrypt hashing',
'number_of_records_exposed': 139000000,
'personally_identifiable_information': ['usernames',
'real names',
'email addresses',
'city & country '
'information'],
'type_of_data_compromised': ['usernames',
'real names',
'email addresses',
'city & country information',
'password hashes']},
'description': 'Canva, the company behind the popular graphic design service, '
'suffered a cyber attack which compromised the data of its 139 '
'million users. Stolen data included customer usernames, real '
'names, email addresses, and city & country information, where '
'available. For 61 million users, password hashes were also '
'present in the database. The passwords were hashed with the '
'bcrypt algorithm, currently considered one of the most secure '
'password-hashing algorithms around. The company stated that '
'they securely store all of the passwords using the highest '
"standards and have no evidence that any of their user's "
'credentials have been compromised.',
'impact': {'data_compromised': ['usernames',
'real names',
'email addresses',
'city & country information',
'password hashes']},
'title': 'Canva Data Breach',
'type': 'Data Breach'}