Popular Maths Site Investigates ‘Potential Data Compromise’

Popular mathematics website Mathway has said it is investigating a potential breach of its database that may have led to the theft of more than 25 million account credentials.

“We are aware of reports of a potential data compromise,” the company said.

“We are working with cybersecurity experts to investigate further, and will take the appropriate steps to ensure the security of customer information.”

Mathway is widely used by students and children as a resource in learning maths.

Data breach

The company offers services via the web as well as Android and iOS apps, with 10 million Android apps installed and a no. 4 ranking in the Education category in Apple’s App Store.

The breach has been linked to a hacking group called Shiny Hunters, which has also distributed a number of other large databases of user credentials.

The group began selling the database of more than 25 million Mathway user credentials on illicit websites in early May, offering it for $4,000 (£3,285) in cryptocurrency, according to computer security firm Cyble.

The database reportedly contains email addresses and hashed passwords.

Password reuse

Depending on which hashing algorithm was used, attackers could potentially render the passwords back into plain text, allowing them to use the credentials in attacks on other accounts where they may have been reused.

Shiny Hunters has recently been linked to data breaches affecting online marketplace Minted, Korean fashion platform StyleShare, Indonesian e-commerce company Bhinneka and photo-comparison app Wishbone, Cyble said.

The company’s AmIBreached service allows users to look up whether their accounts have been included in any recent data breaches.

Security researchers advise users against reusing passwords on multiple websites to avoid hacking risks.

Matthew Broersma

Matt Broersma is a long standing tech freelance, who has worked for Ziff-Davis, ZDnet and other leading publications

Recent Posts

Foreign Secretary Warns Russia About Ransomware Attacks

Dominic Raab warns Russia it cannot continue to shelter criminal gangs carrying out ransomware attacks…

16 hours ago

Most Users Opt Out Of iOS App Tracking – Flurry Analytics

Expected blow for advertising industry, as new figures show a lcear majority of people refuse…

18 hours ago

Amazon Wins Tax Appeal Against European Commission

Europe tax setback? EU's General Court rules the European Commission failed to prove Amazon enjoyed…

18 hours ago

UK To Fine Social Media Firms That Fail To Remove Abuse

Social networking giants face stiff fines if harmful content is not removed, under the Government's…

20 hours ago

US Removes Xiaomi From DoD Blacklist

Shares in Xiaomi rally after US DoD removes Trump's blacklisting of Chinese smartphone maker over…

22 hours ago

German Regulator Orders Facebook To Stop Using WhatsApp Data

Three month data collection ban. Facebook has been banned by regulator from processing the personal…

23 hours ago