geeteam Posted November 14, 2013 Share Posted November 14, 2013 The fallout from the recent Adobe breach keeps growing. At first it was thought that "only" a few million passwords were leaked when the company's servers were attacked by a sophisticated hacker. While that number is already higher than it should be, the scope turned out to be at least 50x larger, with new estimates putting the number of leaked credentials at over 150 million. Not only is this news extremely bad for Adobe, but it's also having a big impact on other websites across the Internet due to the fact that people frequently use the same password on multiple sites. From large sites like Facebook to smaller sites like Diapers.com and Soap.com, companies are examining the stolen data and sending out warnings to customers that they suspect may have the same passwords. According to Krebs on Security, Adobe made the mistake of encrypting all of the passwords with a single key, so if it's brute forced or stolen, the entire trove of data can be unlocked. It also seems that hackers are actively "rattling the doorknobs" of accounts throughout the Internet; just yesterday, my own personal Yahoo! account was "flagged" due to suspicious activity, forcing me to change my password upon the next login. We wouldn't be surprised to see this trend from many other companies in the next few days. Sadly, passwords are still an extremely poor way of securing anything of value, a topic I explored last year. Back when we thought the sample size of stolen passwords was only a few million, the BBC released a list of the top 20 most common ones that were cracked and, sadly, the list was not much different than the most common passwords from 2012. All of this just points to the fact that the sooner we get to two-factor authentication, the better we'll be. Original Article Link to comment Share on other sites More sharing options...
spicey Posted November 14, 2013 Share Posted November 14, 2013 "Your Facebook account is at risk, because you were using the same password in both places."How do they know? Link to comment Share on other sites More sharing options...
jackieo Posted November 14, 2013 Share Posted November 14, 2013 "Your Facebook account is at risk, because you were using the same password in both places."How do they know?hah! thats why i dont use facebook :wtf: Link to comment Share on other sites More sharing options...
Pcsx2006 Posted November 14, 2013 Share Posted November 14, 2013 Yeah I also got a mail from yahoo few days ago, so I changed my password Link to comment Share on other sites More sharing options...
spicey Posted November 14, 2013 Share Posted November 14, 2013 hah! thats why i dont use facebook :wtf:That's what it says on the pic above. I was wondering if they missed the word "may be" and "if".I have a Facebook account, but only used it to play their slow-computer-killing games :lol: Haven't logged in for some time now. Don't know what happens to it. Link to comment Share on other sites More sharing options...
rach Posted November 14, 2013 Share Posted November 14, 2013 "Your Facebook account is at risk, because you were using the same password in both places."How do they know?Facebook Warns Users After Adobe Breach,Facebook is mining data leaked from the recent breach at Adobe in an effort to help its users better secure their accounts. Facebook users who used the same email and password combinations at both Facebook and Adobe’s site are being asked to change their password and to answer some additional security questions. Link to comment Share on other sites More sharing options...
sanjoa Posted November 14, 2013 Share Posted November 14, 2013 I wonder why does people use the same password in all their accounts :doh: Link to comment Share on other sites More sharing options...
Recommended Posts