The data of 229 million Deezer users has fallen into the hands of hackers. At issue is personal information such as names and e-mail addresses. The music streaming service stressed that no passwords or payment details were stolen.
So reports Deezer in a statement (1)
The data theft did not take place at Deezer itself, but at a partner processing data on behalf of the music streaming service. Since 2020, Deezer no longer works with this party. Perhaps that has to do with the data breach, which occurred back in April 2019.
Deezer reveals few details about the incident. Who was behind the digital break-in, how the perpetrator managed to infiltrate its internal systems and whether a ransom was demanded are unknown. However, French streaming service is open and honest about the data that were captured. It includes first and last names, usernames, gender, dates of birth, e-mail addresses, location data and IP addresses of customers.
The company says customers need not worry that their passwords have been captured. As a precaution, however, Deezer does advise customers to change their passwords. Payment information is also not on the street. The data breach came to light on Tuesday, Nov. 8, 2022.
How many customers are affected by the data breach, Deezer is leaving it unclear. Thanks to Australian cybersecurity expert Troy Hunt, however, we know that 229 million users were affected. He reveals via Twitter that Have I Been Pwned-an online database where victims can see if their data was captured in a cyberattack-contains 12 billion records.
This milestone, according to Hunt, is due to the addition of 229,037,936 victims of the data breach at Deezer. Nearly half (49 percent) of the data was already listed on Have I Been Pwned. That means this information had been stolen in a previous data breach at another company.
https://support.deezer.com/hc/en-gb/articles/7726141292317-Third-Party-Data-Breach
