Cryptographically protected using the bcrypt algorithm.
Security reports indicated that the stolen data had resurfaced on the Dark Web, prompting renewed warnings for users who had not changed their reused passwords since the incident. Security Response and Mitigation Canva.com database leaked 24th May 2019.7z
The May 24, 2019, Canva data breach is one of the largest in history, affecting approximately . The incident was carried out by a hacker known as GnosticPlayers , who targeted the platform's profile database. While the breach occurred in 2019, its impact has continued for years, with millions of passwords later decrypted and shared online as recently as late 2024. Overview of the Breach Discovery Date: May 24, 2019. Cryptographically protected using the bcrypt algorithm
Canva discovered that a list of 4 million decrypted passwords from the original breach had been shared online. The incident was carried out by a hacker
The leak did not happen all at once. It evolved in stages over several months and years: