Flickr suffered a data breach on February 5 that stemmed from a compromise of a third-party email service provider, and the company shut down access to the affected system, removed vulnerable links, and notified its email provider and data protection authorities. Potentially exposed information includes names, email addresses, usernames, account types, IP addresses, locations, and Flickr activity; Flickr said no passwords or financial data were affected and advised users to watch for phishing and change reused passwords. #Flickr #SmugMug
Keypoints
- Flickr reported a breach on February 5 caused by a third-party email service provider.
- The company disabled the affected system, removed links to the vulnerable endpoint, and demanded an investigation.
- Potentially accessed data includes names, email addresses, usernames, account types, IP addresses, locations, and Flickr activity.
- Flickr stated no passwords or financial information were compromised and warned users to watch for phishing and change reused passwords.
- SmugMug-owned Flickr is investigating, strengthening third-party security practices, and has notified European and US data protection authorities.
Read More: https://www.theregister.com/2026/02/06/flickr_emails_users_about_data_breach/