Carbonite, a provider of online computer and server backup services suffered a password reuse attack in which some users’ credentials, obtained elsewhere, were used to obtain user data.
The company notified its more than 1.5 million individual and small business customers and forced them to password reset.
The attack was a result of a third-party attacker using compromised email addresses and passwords obtained from other companies that were previously attacked.
Source: https://www.databreaches.net/carbonite-forces-password-reset-after-password-reuse-attack/
"id": "CAR1914123",
"linkid": "carbonite",
"type": "Breach",
"date": "06/2016",
"severity": "60",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"