I got an email today from 500px asking me to update my password. Whenever I get an email like that I usually do some quick search to make sure this isn't another phishing scam before pressing any buttons in the email. This led me to an article that @yaypie posted with even more scary information and breadth of the breach.
As a 500px user it makes me angry that my personal information is out there to be sold to anyone anonymously with some Bitcoins:
14,870,304 accounts for 0.217 BTC ($780) total
1.5GB of data taken July 2018. Each account record contains the username, email address, MD5-, SHA512- or bcrypt-hashed password, hash salt, first and last name, and if provided, birthday, gender, and city and country. 500px is a social-networking site for photographers and folks interested in photography.
How can I as a customer defend myself against company-wide attacks? I can only choose my password and provide incomplete information about myself, which is important for a social network of photographers. For many of us our real name is our brand.