Millions of User Account Details Were Stolen from Education Platform Edmodo by Hackers

A recent security breach on the education platform called Edmodo has resulted in a theft of millions of user account details. The hacker responsible for the theft is now offering to sell this data on the dark web.

Edmodo is widely used by teachers, students, and even the students’ parents. They use it for assigning homework, working on lesson plans, planning activities and more. Supposedly, this organization has over 78 million members.

The notice on the Edmodo’s website says: “Thanks to those who guided and supported us in the beginning, we’re now the number one K-12 social learning network in the world, dedicated to connecting all learners with the people and resources they need to reach their full potential.”

The data that was stolen from the website includes usernames, passwords, and even email addresses of the Edmodo’s members. However, the passwords have been hashed, and to do this, the website has used the robust bcrypt algorithm, as well as the random character strings called salt. This means that hackers will still have trouble when it comes to actually obtaining the login credentials. Another good thing is that not all of the stolen records contain an email address of the user.

One of the for-profit breach notification websites called LeakBase has contributed over two million of the stolen user records as a sample. This included usernames, passwords, as well as email addresses. The data was then verified by attempts to create new accounts via provided emails. Every one of the provided emails was already registered on Edmodo, which confirmed that the sample provided by LeakBase is genuine.

The rest of the data is currently on sale for around $1,000 on the dark web marketplace, and it was posted there by the user under the name of nclay. This user claims to have 77 million accounts, 40 million of which include the email addresses. According to nclay, these accounts were stolen last month. However, the vendor didn’t respond to requests concerning clarification.

Mollie Carter, company’s VP of Marketing and Communications, has stated that Edmodo is aware of the potential security incident. She also said that the users’ privacy is of the greatest importance to the company and that they’re currently investigating this breach. Apparently, the report was taken very seriously, and for now, not much more is known about how the breach occurred. Hopefully, the ongoing investigation will soon shed some light on the incident.

Ali Raza
Ali Raza
Ali Raza is a freelance journalist with extensive experience in marketing and management. He holds a master degree and actively writes about crybersecurity, cryptocurrencies, and technology in general. Raza is the co-founder of SpyAdvice.com, too, a site dedicated to educating people on online privacy and spying.

More from author

Subscribe
Notify of
guest
0 Comments
Oldest
Newest Most Voted
Inline Feedbacks
View all comments

Related posts

Advertisment

Latest posts

7 Best Work from Home Apps for Moms

Being a mom is a job in itself. Between taking care of the kids, keeping up with household chores, and trying to squeeze in...

Top 9 Ways Technology is Helping Global Trade

If you are in a global business, utilizing technology is a surefire way of growing your business and increasing your customer base. Today, you...

7 Ways Technology Is Going To Transform Lead Generation

 In the ever-growing world of digital marketing, the ability to generate quality leads remains the most important ROI driver. Both inbound and outbound lead...