The well-known picture-sharing website Imgur has confirmed that in 2014, there was a security compromise that resulted in the theft of email addresses and passwords.
The company said that as its service has never requested actual names, addresses, or phone numbers, personal information was not compromised.
According to the company, the passwords that were taken advantage of were secured by the SHA-256 hashing technique, which is easily cracked by brute force attacks.
Although Imgur is looking into the issue, it's still not apparent how it happened and why it was made public just three years later.
Source: https://securityaffairs.com/65991/data-breach/imgur-2014-data-breach.html
"id": "IMG214181223",
"linkid": "imgur",
"type": "Data Leak",
"date": "11/2017",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"