Data Science Learning Site Breached by Third Party

2019, Breaches, February

Who: DataCamp

# of Records: 700,000 accounts

When it occurred: February 11, 2019

What Happened: User data was exposed by a third party who gained criminal unauthorized access to one of our systems.

How it Happened: The details of user data affected in the breach. Personal information included name, email address, optional info such as location, company, biography, education, and a picture of the user. On the account side, bcrypt-hashed passwords, account creation date, last sign in date & sign in IP address were involved.

Outcome: Investigation is underway to determine the precise causes. A leading digital forensics and security firm has been hired to assist us in gaining a better understanding of what happened and take further action as needed. Data protection authorities are being notified. Our efforts to protect our users and prevent this type of incident from happening in the future are our top priority.