Canva urges users to change passwords following data breach affecting up to 139 million users

  •   September 19, 2019

Graphic design toolset Canva is advising users to change their login credentials after the company’s database was reportedly compromised in a cyber attack Friday.

The attack targeted usernames and email addresses, affecting up to 139 million users globally. Passwords were also obtained, but Canva assured users that passwords have been “salted and hashed with bcrypt,” meaning they remain unreadable by third parties. The platform recommends that users change their passwords as a precaution.

“Our teams have been working around the clock to investigate the attack and communicate with our customers,” Canva said on Monday. “We are continuing to investigate and are being thorough and methodical with our examinations… We have also engaged forensic experts to investigate the incident.”