Blog comment hosting service Disqus has confirmed a data breach that occurred back in 2012. Hackers have stolen details for at least 17.5 million Disqus user accounts. The exposed records include email addresses, usernames, sign-up dates, and last login dates in plain text. Experts noticed that SHA-1 hashed passwords were only included for about 33% of all records. Disqus declared that at the end of 2012, it switched the password hashing algorithm from SHA1 to bcrypt.”]
Source: http://securityaffairs.co/wordpress/63947/data-breach/disqus-data-breach-2012.html