Opera warns Sync users of possible data breach
On Friday, Opera announced a security alert to warn its users that the Sync Service might have been breached, they noticed sign of an attack where access was gained to the Opera sync system. This attack was quickly blocked, but “some data, including some of their Sync users’ passwords and account information, like login names, may have been compromised.
The company has also sent emails to all Opera Sync users to inform them about the warning that attackers breached Opera’s cloud Sync service server and ask them to change the password for their Opera sync accounts.
Around 350 million people are using the Opera browser. Of those, from Opera 1.7 million people received an emails and suggesting them to change any third-party passwords that were synchronized with the service.
Opera uses Nigori for synchronized passwords .Opera to simplify that password in the system used for Authentication are hashed and salted with per user salts, though, the company hasn’t provided any kind of information about the hashing process for the authentication passwords.
The company also said it “Although we only store encrypted (for synchronized passwords) or hashed and salted (for authentication) passwords in this system, we have reset all the Opera sync account passwords as a precaution.”
Internal security staff believes that some users’ data, including login credentials, may have been compromised.
To get a new password for Opera Sync, use the password resetting page.
As usual, Opera Sync users that share their qualifications among multiple sites are advised to change their passwords for those sites as soon as possible.