What Happened
In April 2020, the independent Android app store Aptoide suffered a data breach exposing 20 million user records. The compromised data included email addresses, encrypted passwords (stored as unsalted SHA-1 hashes), real names, IP addresses, browser user agent details, registration dates, device information, and birthdates. The leaked data was subsequently shared online through a popular hacking forum. Aptoide emphasized that no payment information or other highly sensitive data was compromised in the incident, and the affected users were primarily those who had registered accounts between July 2016 and January 2018.
