Chegg Data Breach Affects 40 Million Customers

Chegg Data Breach Affects 40 Million Customers

The hack dates back to April 2018, and compromised information includes email addresses and passwords.

Textbook rental giant Chegg reported to the Securities and Exchange Commission (SEC) Wednesday that they had discovered a security breach affecting over 40 million users.

The report was discovered last week, but the intrusion allegedly began in April 2018. Chegg reported that “an unauthorized party gained access to the company database that hosts user data for chegg.com” in the SEC filing.

Chegg said the hack gained access to user names, email addresses, shipping addresses, and chegg.com passwords. The passwords were stored with a hashing algorithm, but it was not stated which one. Hashing algorithms can be broken, rendering the deciphered data in plain text.

However, Chegg did say that hackers did not gain access to Social Security numbers or financial information, such as credit card or bank account numbers. The company said it plans to reset all user passwords.

As a result of the data breach, Chegg’s stock plunged more than 12 percent. Other companies have had bad luck with data breaches as well, with Under Armour having suffered a similar attack in March. This breach comes on the heels of British Airways having their mobile app that compromised information for nearly 400,000 card payments.

About the Author

Jordan Lutke is an intern with 1105 Media.

Featured

  • Return to Form

    My first security trade show was in 2021. At the time, I was awed by the sheer magnitude of the event and the spectacle of products on display. But this was the first major trade show coming out of the pandemic, and the only commentary I heard was how low the attendance was. Two representatives from one booth even spent the last morning playing catch in the aisle with their giveaway stress balls. Read Now

    • Industry Events
    • ISC West
  • Live from ISC West: Day 1 Recap

    The first day of ISC West 2023 is in the books, and it’s safe to say that vendors have brought their A-game to Las Vegas. The booths of this year’s Live From partners—NAPCO Security, Alibi Security, Vistacom, RGB Spectrum, and DoorKing—were swamped all day long. Here’s a brief recap of just a few highlights from each partner’s presence at the show. Read Now

    • Industry Events
    • ISC West
  • Turn on the AC, ISC West is Hot

    Nothing warm about the Las Vegas weather outside. It is cold, and it was raining after the opening day. No one seemed to care inside the convention center. The hall was packed with inquisitive security professionals. Read Now

    • Industry Events
    • ISC West
  • Live From ISC West 2023: Day 1

    ISC West 2023 in Las Vegas, Nevada, has officially begun! Make sure to keep an eye on Security Today’s ISCW Live 2023 page, as well as our associated Twitter accounts—@SecurToday and @CampusSecur—for the latest updates from the show floor at the Venetian Expo. Read Now

    • Industry Events
    • ISC West

Featured Cybersecurity

New Products

  • HID Signo Readers

    HID Signo Readers

    HID Global has announced its HID® Signo™ Biometric Reader 25B that is designed to capture and read fingerprints in real-world applications and conditions. 3

  • Paxton10 CORE Cameras

    Paxton10 CORE Cameras

    The new CORE Series cameras feature edge processing for ultimate scalability, built-in edge storage, and plug-and-play installation. The addition of the CORE Series gives installers new hardware, better choice, and more value than ever before. 3

  • FlexPower® Global™ Series (FPG) from LifeSafety Power

    FlexPower® Global™ Series (FPG) from LifeSafety Power

    The FlexPower® Global™ Series (FPG) from LifeSafety Power—designed to provide DC power for access control systems in international applications—is now PSE listed for Japan and compatible with the country’s 100VAC applications. 3