They keep happening because there have yet to be severe enough consequences for these data gobbling companies to actually stop and look at what they are doing, rather than focus on ‘number go up’ and pushing AI into everything they possibly can. Until that number has a severe downturn due to data privacy consequences, it’s a calculated expense. Answer from LoneWolf2k1 on reddit.com
🌐
Huntress
huntress.com › home › threat library › data breaches › reddit
Reddit Data Breach: What Happened, Impact, and Lessons | Huntress
The Reddit data breach, disclosed on February 9, 2023, involved a targeted phishing attack that compromised an employee’s credentials. This allowed attackers to access some internal systems and exfiltrate company documents and code repositories.
🌐
Twingate
twingate.com › blog › tips › reddit-data-breach
What happened in the Reddit data breach? | Twingate
In February 2023, Reddit experienced a data breach that compromised its internal documents and systems.
🌐
Reddit
reddit.com › r/reddit › we had a security incident. here’s what we know.
r/reddit on Reddit: We had a security incident. Here’s what we know.
February 10, 2023 -

TL:DR Based on our investigation so far, Reddit user passwords and accounts are safe, but on Sunday night (pacific time), Reddit systems were hacked as a result of a sophisticated and highly-targeted phishing attack. They gained access to some internal documents, code, and some internal business systems.

What Happened?

On late (PST) February 5, 2023, we became aware of a sophisticated phishing campaign that targeted Reddit employees. As in most phishing campaigns, the attacker sent out plausible-sounding prompts pointing employees to a website that cloned the behavior of our intranet gateway, in an attempt to steal credentials and second-factor tokens.

After successfully obtaining a single employee’s credentials, the attacker gained access to some internal docs, code, as well as some internal dashboards and business systems. We show no indications of breach of our primary production systems (the parts of our stack that run Reddit and store the majority of our data).

Exposure included limited contact information for (currently hundreds of) company contacts and employees (current and former), as well as limited advertiser information. Based on several days of initial investigation by security, engineering, and data science (and friends!), we have no evidence to suggest that any of your non-public data has been accessed, or that Reddit’s information has been published or distributed online.

How Did We Respond?

Soon after being phished, the affected employee self-reported, and the Security team responded quickly, removing the infiltrator’s access and commencing an internal investigation. Similar phishing attacks have been recently reported. We’re continuing to investigate and monitor the situation closely and working with our employees to fortify our security skills. As we all know, the human is often the weakest part of the security chain.

Our goal is to fully understand and prevent future incidents of this nature, and we will use this post to provide any additional updates as we learn and can share more. So far, it also appears that many of the lessons we learned five years ago have continued to be useful.

User Account Protection

Since we’re talking about security and safety, this is a good time to remind you how to protect your Reddit account. The most important (and simple) measure you can take is to set up 2FA (two-factor authentication) which adds an extra layer of security when you access your Reddit account. Learn how to enable 2FA in Reddit Help. And if you want to take it a step further, it’s always a good idea to update your password every couple of months – just make sure it’s strong and unique for greater protection.

Also: use a password manager! Besides providing great complicated passwords, they provide an extra layer of security by warning you before you use your password on a phishing site… because the domains won’t match!

…AMA!

The team and I will stick around for the next few hours to try to answer questions. Since our investigation is still ongoing and this is about our security practices, we can’t necessarily answer everything in great detail, but we’ll do our best to live up to Default Open here.

Top answer
1 of 5
1276
Soon after being phished, the affected employee self-reported Good on them for coming forward. I can't imagine that's a fun message/email/call to have.
2 of 5
298
Big kudos to you all for self-reporting the incident within a week's time. It's a shame that major corporations see the loss of reputation of reporting an incident as a greater hit than stalling and obfuscating the facts from their consumers. Phishing happens to every corporation and action like this helps destigmatize the incidents. As someone else said, props to your staff who self-reported the successful phish and more props to you if you're not punishing them (beyond further security training)!
People also ask
How did the Reddit data breach happen?
The Reddit breach occurred through a phishing attack that targeted an employee. By impersonating IT staff, attackers gained credentials to access internal systems and data.

🌐
huntress.com
huntress.com › home › threat library › data breaches › reddit
Reddit Data Breach: What Happened, Impact, and Lessons | Huntress
What type of data was exposed in the Reddit breach?
Attackers accessed internal documents, code repositories, and limited advertiser information. However, no user passwords or personal data were compromised.

🌐
huntress.com
huntress.com › home › threat library › data breaches › reddit
Reddit Data Breach: What Happened, Impact, and Lessons | Huntress
How can businesses prevent breaches like the one at Reddit?
Businesses can bolster security by implementing MFA, running regular phishing awareness training, and using advanced monitoring tools to detect unauthorized access or activity.

🌐
huntress.com
huntress.com › home › threat library › data breaches › reddit
Reddit Data Breach: What Happened, Impact, and Lessons | Huntress
🌐
Reddit
reddit.com › r/cybersecurity › 2 data breaches within a week! what's going on?
r/cybersecurity on Reddit: 2 data breaches within a week! What's going on?
April 18, 2025 -

Got an email from my taxation filing company that a data breach happened and my name, date of birth, drivers license, social security, almost everything that matters has been breached.

Then got an email from Hertz with the same crap. Everything that is considered SPI (Sensitive Personal Information) has beeb breached.

What kind of a shitshow are these companies up to putting customers' sensitive information on the internet? Why can't they limit all this info on intranet? Can I sue these companies for letting my information out?

Top answer
1 of 22
156
They keep happening because there have yet to be severe enough consequences for these data gobbling companies to actually stop and look at what they are doing, rather than focus on ‘number go up’ and pushing AI into everything they possibly can. Until that number has a severe downturn due to data privacy consequences, it’s a calculated expense.
2 of 22
62
2 that you know of
🌐
The Hacker News
thehackernews.com › home › cybersecurity news
Reddit Suffers Security Breach Exposing Internal Documents and Source Code
February 10, 2023 - Popular social news aggregation ... blamed it on a "sophisticated and highly-targeted phishing attack" that took place on February 5, 2023, aimed at its employees....
🌐
Help Net Security
helpnetsecurity.com › home › reddit breached: internal docs, dashboards, systems accessed
Reddit breached: Internal docs, dashboards, systems accessed - Help Net Security
February 10, 2023 - Based on several days of initial ... a successful phishing attack. “On late (PST) February 5, 2023, we became aware of a sophisticated phishing campaign that targeted Reddit employees....
🌐
Ars Technica
arstechnica.com › information-technology › 2023 › 02 › this-weeks-reddit-breach-shows-companys-security-is-still-woefully-inadequate
This week’s Reddit breach shows company’s security is (still) woefully inadequate - Ars Technica
February 10, 2023 - An investigation into the breach ... user password data was accessed. “On late (PST) February 5, 2023, we became aware of a sophisticated phishing campaign that targeted Reddit employees,” Slowe wrote....
🌐
BleepingComputer
bleepingcomputer.com › home › news › security › hackers breach reddit to steal source code and internal data
Hackers breach Reddit to steal source code and internal data
February 9, 2023 - Hackers breach Reddit to steal ... · 05:04 PM · 2 · Reddit suffered a cyberattack Sunday evening, allowing hackers to access internal business systems and steal internal documents and source code....
Find elsewhere
🌐
Reddit
reddit.com › r/cybersecurity › major data leak exposed 184m facebook, snapchat, roblox logins and passwords
r/cybersecurity on Reddit: Major data leak exposed 184M Facebook, Snapchat, Roblox logins and passwords
May 22, 2025 - The database with details on over 184 million accounts, uncovered by security researcher Jeremiah Fowler, reveals the extent of the effectiveness of cybercriminals. According to the researchers, tens of millions of account details were stored ...
🌐
Reddit
reddit.com › r/information_security › top 3 data breaches in june 2023
r/Information_Security on Reddit: Top 3 Data Breaches in June 2023
October 4, 2021 - 2. BlackCat claims they hacked Reddit and will leak the data · Operators broke into Reddit on February 5, 2023, and took 80 gigabytes (zipped) of data. Reddit was emailed twice by operators, once on April 13 and one again on June 16.
🌐
Reddit
reddit.com › r/cybersecurity › why does it seem like data breaches are becoming more and more common?
r/cybersecurity on Reddit: Why does it seem like data breaches are becoming more and more common?
August 10, 2024 -

In the past probably 4 months, I've received 3 letters in the mail and 2 emails from different companies claiming that they have had significant data breaches and my personal information had been compromised. These companies have ranged from small companies to large medical groups and even an ISP.

I am not yet a cyber security professional, but seeking to become one in the near future, so I don't have much insight, but from what I've been able to gather from this community, and others like it, is it seems that companies have just been flat out neglecting their customer's personal information for the sake of shaving a few dollars off of their bottom line. Is this actually true? And if so WTF man. That's just insane.

Top answer
1 of 24
63
Data breaches have always been prevalent. The reason you see more of them lately (in the US anyway) is because the SEC now requires publicly-traded companies to disclose them. I've worked in threat intelligence for a number of years and the amount of organizations you don't see having their data stolen every week absolutely dwarfs the amount you see in the news.
2 of 24
58
Welcome to corporate America. Better cut back so the Executives can buy another mansion or two. Phishing and social engineering are the two most common for me anyway. There are more but those are the most common. Your biggest threat and first defense are the end user. Give and take.
🌐
Reddit
reddit.com › r/cybersecurity › i analyzed 50,000 leaked passwords from recent breaches. the 'strong' passwords were weaker than the 'weak' ones. here's why.
r/cybersecurity on Reddit: I analyzed 50,000 leaked passwords from recent breaches. The 'strong' passwords were weaker than the 'weak' ones. Here's why.
August 10, 2025 -

I've been deep in password breach databases for the past month (yes, the legally available ones for research), and I need to share something that's been bothering me.

We've all been taught to create passwords like "P@ssw0rd123!" - uppercase, lowercase, numbers, symbols. Checks all the boxes, right?

Here's the problem: hackers know this too.

I analyzed 50,000 real passwords from recent breaches and found:

THE "STRONG" PASSWORD MYTH

Everyone follows the same patterns:

- First letter capitalized: 68% of passwords

- Numbers at the end: 42%

- Year of birth or "123": 38%

- Exclamation point as the special character: 31%

When everyone follows the same "random" pattern, it's not random anymore.

THE PASSWORD THAT BROKE MY BRAIN

I found two passwords in the breach:

  1. "Dragon!2023" - Marked as "very strong" by most checkers

  2. "purplechairfridgecoffee" - Often marked as "weak"

Guess which one appeared 47 times in the database? And which one was unique?

The four random words would take centuries to crack. The "strong" password? 3 days with modern GPUs.

WHAT I LEARNED BUILDING MY OWN GENERATOR

Most password generators suck because they use Math.random() - that's not actually random, it's pseudorandom. If someone knows the seed, they can predict every password.

I built one using window.crypto.getRandomValues() - actual cryptographic randomness. But here's the thing: even with perfect randomness, if you're only generating 8-character passwords, you're still screwed.

THE UNCOMFORTABLE TRUTH

The best password is one that:

  1. You'll never remember (so it's truly random)

  2. Is at least 16 characters

  3. Is unique for every site

  4. Lives in a password manager

Yeah, I know. We built all these password rules to avoid using password managers, and now we need password managers because of all the rules.

MY QUESTIONS FOR YOU:

What's the dumbest password requirement you've encountered? I'll start: a bank that required EXACTLY 8 characters. Not "at least 8" - exactly 8.

And how do you explain password managers to someone who writes passwords on sticky notes? (asking for my mom)

Top answer
1 of 5
457
I'll one-up your example - Westpac Bank until recently required a six character password. No more, no less. No special characters, either https://www.reddit.com/r/australia/s/4hWTK4alm8
2 of 5
228
NIST has been saying this about passwords for years. This is nothing new. But it always takes new IT/IS best practice several years to penetrate older job markets. Decades even.
🌐
BreachSense
breachsense.com › breaches › reddit-data-breach
Reddit Data Breach in 2023
Data Breach Report Victim reddit.com Threat Actor ALPHV Date Discovered Jun 19, 2023 Description Reddit is an American social news aggregation, content rating, and discussion website. Leak Size Unknown
🌐
Cybernews
cybernews.com › home › reddit admits security breach
Reddit admits security breach | Cybernews
July 28, 2025 - Published: 10 February 2023 · ... targets, Reddit, a popular social media site, was quick to disclose some company data was stolen in a phishing incident....
🌐
Reddit
reddit.com › r › databreach
Data Breaches
January 3, 2014 - American National Insurance Company (ANICO) Data Leak: 279,332 lines of sensitive customer data have allegedly been leaked online—possibly linked to the 2023 MOVEit hack, a file transfer app vulnerability.
🌐
TechCrunch
techcrunch.com › home › reddit says hackers accessed employee data following phishing attack
Reddit says hackers accessed employee data following phishing attack | TechCrunch
February 10, 2023 - Reddit said that hackers successfully obtained an employee’s credentials, allowing them to gain access to internal documents and source code, as well as some internal dashboards and business systems. Slowe said the company learned of the breach after the phished employee self-reported the incident to Reddit’s security team.
🌐
LinkedIn
linkedin.com › news › story › hackers-threaten-reddit-data-leak-6331122
Hackers threaten Reddit data leak | LinkedIn
June 20, 2023 - Needless to say, there’s been some of that classic Internet drama. 💻 Reddit February Hack 💻 On February 5, 2023, Reddit identified a phishing campaign that targeted Reddit employees.
🌐
Reddit
reddit.com › r/cybersecurity › shocking security breach of 16 billion logins includes apple ids (??!)
r/cybersecurity on Reddit: Shocking security breach of 16 billion logins includes Apple IDs (??!)
June 19, 2025 -

Stumbled across this today - anyone heard of it ?! Looks moderately strange to me.

https://www.macworld.com/article/2820280/shocking-security-breach-of-16-billion-logins-includes-apple-ids.html

Top answer
1 of 5
233
These are previously breached sets not one breach totaling 16billion records
2 of 5
75
As a side note, I'd really love if clickbait articles across the spectrum could at lease use some different adjectives sometimes . I mean do you ever see 'ghastly', 'jolting', 'flabbergasting' anymore?
🌐
Reddit
reddit.com › r/outoftheloop › out of the loop: what is going on with this massive data breach of 26 billion records that was reported over the past 48 hours, and with the hacking of executives from major companies such as microsoft ?
r/OutOfTheLoop on Reddit: Out of The Loop: What is going on with this Massive Data Breach of 26 BILLION records that was reported over the past 48 hours, and with the hacking of executives from major companies such as Microsoft ?
June 27, 2023 -

Found article on the same from the Daily Mail entitled "Huge Data Link dubbed 'Mother of All Breaches' sees 26 BILLION records leaked ....." :https://www.dailymail.co.uk/sciencetech/article-12992157/Huge-data-leak-dubbed-Mother-Breaches-sees-26-BILLION-records-leaked-sites-including-Twitter-Linkedin-Dropbox-heres-check-youve-affected.html

From the Article ( will embed quote)

Apparently, nobody knows who's responsible for this breach ( yet), but apparently some of the hackers targeting Microsoft got identified.

Top answer
1 of 3
235
Answer: It appears most of the data compiled from previous breaches and data leaks and there's likely to be duplicates within that. The "Mother Of All Breaches" designation is mostly just due to the volume itself and not the scope of the data. https://www.forbes.com/sites/daveywinder/2024/01/23/massive-26-billion-record-leak-dropbox-linkedin-twitterx-all-named/?sh=795934ddab58 The Forbes article ends with "Above all else, though, don’t panic. If you maintain good credentials hygiene, using strong and unique passwords that are not reused elsewhere, as well as two-factor authentication where available, you should be safe. If you don’t, now is a great time to start."
2 of 3
186
Question: Do you have a source other than the Dailymail? Isn't that a known trash tabloid?
🌐
Reddit
reddit.com › r/cybersecurity › national public data confirms breach exposing social security numbers
r/cybersecurity on Reddit: National Public Data confirms breach exposing Social Security numbers
August 16, 2024 -

https://www.bleepingcomputer.com/news/security/national-public-data-confirms-breach-exposing-social-security-numbers/

Top answer
1 of 5
106
I’ve said it before and I’ll continue saying it until I’m blue in the face: The single best proactive step you can do as an individual to protect yourself in these kinds of situations is to keep a freeze on your credit with all three credit bureaus: Equifax Experian TransUnion It takes ~5 minutes to register and establish a freeze for each bureau. By placing a freeze on your credit, you greatly reduce the threat posed to you because you prevent new credit from being opened in your name. All bureaus have some level of fraud monitoring that would ideally identify fraudulent credit applications, but better to take matters into your own hands by blocking it altogether. Some FAQs I get asked about doing this are: Q: Does this impact my existing credit lines? A: No. All of your credit cards, loans, mortgages, etc. continue to operate as normal. This simply prevents new credit from being opened. Q: Does this affect my credit score? A: No. Zero impact to credit score. Q: How do I open a new credit card/line of credit if my credit is frozen? A: You simply login to each of the bureaus and schedule a thaw. I usually just do a thaw for one day on the rare occasion I apply for credit. A couple other calls out are that: Sometimes you’ll need to schedule a thaw if you’re getting new phone or internet service. These service providers will sometimes do a pull of your credit before they’ll establish service. You should have different, strong passwords for each of the credit bureaus. Treat these like you would any financial service account. If you have a weak password or use the same password you used that was exposed in a data breach, you’re not preventing anything, you’re just slightly slowing attackers down.
2 of 5
12
Can some journalists please research and explain who or what “Jerico Pictures” is? I have no idea how an unheard of company can come in to possession of billions of personal records. They seem grossly unqualified to hold that much confidential information and clearly incapable of protecting it. How did so many government agencies allow them access to this many sensitive records? How do those access contracts not feature substantial penalties for leaking the records to this extent? It seems crazy to me that this is not a bigger story, coupled with investigating how many entities like this may also be sitting on a similar scale of confidential identity data.