Canva: Difference between revisions

On May 24, 2019, Canva identified their systems were attacked and posted an announcement about the breach, urging users to change their passwords. <ref>{{Cite web |publisher=Canva |date=24 May 2019 |title=Canva Security Incident – May 24 FAQs |url=https://www.canva.com/help/incident-may24/ |url-status=live |archive-url=https://archive.is/yXovj |archive-date=2026-03-05 |access-date=5 Mar 2026 }}</ref> <!--Archived Canva help center site contains a cookies advice that cannot be removed and archived versions from Wayback Machine are inaccessible. If you can provide a better archived link replace the current archived link--><ref>{{Cite web |last=Security Magazine |date=30 May 2019 |title=Canva Urges Users to Change Passwords After Cybersecurity Breach |url=https://www.securitymagazine.com/articles/90296-canva-urges-users-to-change-passwords-after-cybersecurity-breach |url-status=live |archive-url=https://archive.is/fGoWN |archive-date=2026-03-05 |access-date=5 Mar 2026 |website=Security Magazine |publisher=}}</ref> 139 million users were affected, and information taken includes usernames, real names, email addresses and location. 61 million users' data included password hashes, and for other users, Google tokens were taken. <ref>{{Cite web |last=Hashim |first=Abeerah |date=31 May 2019 |title=Graphic Design Service Canva Suffers Data Breach Affecting 139 Million Users |url=https://latesthackingnews.com/2019/05/31/graphic-design-service-canva-suffers-data-breach-affecting-139-million-users/ |url-status=live |archive-url=https://archive.is/3PrTn |archive-date=2026-03-05 |access-date=5 Mar 2026 |website=Latest Hacking News}}</ref>. Seven months later, on the 11th of January 2020, Canva became aware of 4 million user passwords had been decrypted and shared online. Following the discovery, on the 12th of January Canva has forcefully reset the password of every user that had not changed it since the date of the incident.