Flickr emails users about data breach, pins it on 3rd party

Legacy image-sharing website Flickr suffered a data breach, according to customers emails seen by The Register.

The hack transpired on February 5, an email to customers stated, and the company said it "shut down access to the affected system within hours of learning about it."

The security issue stemmed from a third-party email service provider, the identity of which was not specified. 

In the email, Flickr said it disabled access to the affected system and removed all links to the vulnerable endpoint before notifying its email provider and demanding an investigation into the incident.

"We are conducting a thorough review and strengthening our security practices with third-party providers," Flickr's email stated. "We notified the relevant data protection authorities."

As for the all-important 'what data was taken' question, it's the usual personally identifiable information (PII) and a few other less-expected markers.

Thge message to custokers states that names, email ...