Mixcloud Says Hackers Stole 'Minority' of Users' Passwords in Security Breach
British music streaming service Mixcloud suffered a security breach over the long weekend, when hackers stole some users' email addresses, IP addresses and securely encrypted passwords.
Mixcloud co-founders Nico Perez, Mat Clayton and Nikhil Shah confirmed the breach in a company blog post, claiming that it only affected a "minority" of the platform's users.
"We are actively investigating the incident. We apologize to those affected and are sorry that this has happened," the post reads. "We understand this is frustrating and upsetting to hear, and we take the trust you put in us very seriously."
Founded in 2008 as a free space for DJs, online radio stations and audio creators to share content, Mixcloud has since hosted content for the likes of Carl Cox, Moby, Erykah Badu and David Byrne. The majority of Mixcloud users signed up through Facebook authentication, in which case Mixcloud doesn't store passwords anyway. The platform also does not store full credit card numbers or mailing addresses.
Another piece of good news is that the passwords Mixcloud does keep on file are encrypted, making them unlikely to be unscrambled by hackers. Even so, Mixcloud is recommending that users change their passwords just in case.
Reached by email, Shah said that Mixcloud is still actively investigating the incident, and confirmed that Mixcloud recently surpassed 1.5 million uploaders. He declined to comment further.