Flipboard Hack Exposed Usernames, Email Addresses and Hashed Passwords - MacRumors
Skip to Content

Flipboard Hack Exposed Usernames, Email Addresses and Hashed Passwords

by

Flipboard today emailed Flipboard users to let them know about a security breach that saw usernames, email addresses, and protected passwords accessed by hackers.

Between June 2, 2018 and April 22, 2019, there was "unauthorized access" to Flipboard databases that leaked account information. Flipboard says the hackers "potentially obtained copies" of some databases, and has not yet shared details on how many accounts were compromised.

flipboardsecuritybreach
Databases included Flipboard usernames, names, email addresses, and passwords, but the passwords were salted and hashed, which means they weren't stored in plaintext and would be difficult to crack.

Also included were digital tokens used to connect Flipboard to third party services like Twitter or Facebook, if users had indeed connected their Flipboard accounts to their social media networks.

Flipboard is resetting all user passwords and replacing or deleting all digital tokens. If you connected Flipboard to Facebook or Twitter, you will need to reconnect your accounts.

Flipboard says that to prevent something like this from happening again, it has implemented "enhanced security measures." Law enforcement officials have also been notified.

The company recommends that users who use the same username and password for Flipboard that they use for other accounts change their passwords for other services as a precautionary measure.

Tag: Flipboard

Popular Stories

Apple Card iPhone 16 Pro Feature

Apple Card Promo to Offer Free AirPods Pro 3

Friday May 15, 2026 8:59 am PDT by
Starting as early as next week, customers who sign up for an Apple Card at Apple's retail stores in the U.S. will receive $249 cash back when they purchase AirPods Pro 3, according to Bloomberg's Mark Gurman. The promotion has yet to be officially announced by Apple, so exact terms and conditions are not available at this time. AirPods Pro 3 are priced at $249 in the U.S., so customers who...
Read Full Article46 comments
Apple WWDC25 iOS 26 CarPlay Light mode 250609

Six Popular iPhone Apps Now Available on CarPlay

Thursday May 14, 2026 9:10 am PDT by
Apple's CarPlay system for accessing iPhone apps on a vehicle's dashboard screen has received six popular apps in recent weeks: ChatGPT, Perplexity, Grok, Google Meet, WhatsApp, and the indie artist streaming platform Audiomack. Make sure you have the latest version of each app and they will automatically appear on CarPlay. ChatGPT Starting with iOS 26.4, CarPlay supports voice-based...
Read Full Article29 comments
ipad mini 7 blue

OLED iPad Mini: Release Date, Pricing, and What to Expect

Thursday May 14, 2026 5:08 am PDT by
According to the latest rumors, Apple is close to launching its next-generation iPad mini. So what should we expect from the successor to the iPad mini 7 that Apple released over a year ago? Read on to find out. Processor and Performance Apple is working on a next-generation version of the iPad mini (codename J510/J511) that features the A19 Pro chip, according to information found in code...
Read Full Article87 comments

Top Rated Comments

nwcs Avatar
nwcs
91 months ago
While not excusing a breach, the reality is that security is multilayered and simply very hard. It’s a lot like keeping squirrels from bird feeders. The people looking to breach spend all their time and resources to breach but the security people can only do so much.

Factor in third party libraries with their own vulnerabilities, software vulnerabilities, hardware vulnerabilities, and human weaknesses to phishing and the like and the job is even harder.

After having dealt with various security stuff over the years, working with third parties in software scanning, pen testers, etc. I’ve realized that the odds are stacked perpetually against any company. There are more hackers out there with agendas, resources, and cleverness than there are people available to defend against them in every corporation. It’s the blessing and curse of the internet all at once.
Score: 17 Votes (Like | Disagree)
I7guy Avatar
I7guy
91 months ago
The bad news keeps coming from social media sites that do a poor job in protecting their networks.
Score: 14 Votes (Like | Disagree)
C
chelsel
91 months ago
Who are the CTOs and engineers of these companies that decide they want to write their own authentication systems!? Companies need to start getting class action lawsuits for privacy violations and sued into oblivion... then they will start taking security seriously.
Score: 12 Votes (Like | Disagree)
burgman Avatar
burgman
91 months ago
The bad news keeps coming from social media sites that do a poor job in protecting their networks.
I’ve never even heard of flipboard.. but then again I’ve never even had a FB account so that’s how little I give a flyin f about social media/
Thanks for the laugh, because it starts with an F it must be Facebook clone? Flipboard is a curated news app. :)
Score: 10 Votes (Like | Disagree)
dannyyankou Avatar
dannyyankou
91 months ago
I appreciate their transparency. Certain other companies would try to cover it up.
Score: 4 Votes (Like | Disagree)
E
edgonzalez32
91 months ago
While not excusing a breach, the reality is that security is multilayered and simply very hard. It’s a lot like keeping squirrels from bird feeders. The people looking to breach spend all their time and resources to breach but the security people can only do so much.

Factor in third party libraries with their own vulnerabilities, software vulnerabilities, hardware vulnerabilities, and human weaknesses to phishing and the like and the job is even harder.

After having dealt with various security stuff over the years, working with third parties in software scanning, pen testers, etc. I’ve realized that the odds are stacked perpetually against any company. There are more hackers out there with agendas, resources, and cleverness than there are people available to defend against them in every corporation. It’s the blessing and curse of the internet all at once.
Yea, like people are way too quick to just start ******** all over a company when a data breach happens. Its insanely complex.
Score: 4 Votes (Like | Disagree)
Read All Comments