Radio-based music streamer Pandora is warning it’s users to change their passwords thanks to a breach in a different service leading to hacking risks.
Pandora hasn’t been hacked, but it’s users accounts could be. Thanks to a “data dump” from a different service that was recently released to the public that contains usernames and passwords of users.
Pandora examined the data and warned users it found to be at risk, saying:
Dear Pandora Listener:
As a precaution, we want to make you aware of a situation that could possibly affect your Pandora account.
First off, there is no evidence that your Pandora account has been compromised or tampered with in any way.
However, usernames and passwords that were breached from a service other than Pandora a few years ago were posted on the web recently.
In order to protect Pandora Listeners, our security teams have analyzed the data and found that your Pandora username was included in the list.
If you share passwords across services and haven’t updated them recently, and you haven’t already reset your Pandora password, you should do so now.
Although Pandora’s systems weren’t hacked themselves the risk is that many use the same username and password across various different services and platforms. Unfortunately the issue of login details being hacked and sold on the Deep Web is more prevalent than it may seem. This is why it’s best to use a different password each time (but we understand – ain’t nobody got time for that).
If you’re a Pandora user, especially if you’ve received that email, you may want to go set a new password to protect your account.