2 million stolen passwords for Facebook, Twitter, Google, Yahoo and others leaked
GeneralThis forum is for non-technical general discussion which can include both Linux and non-Linux topics. Have fun!
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
2 million stolen passwords for Facebook, Twitter, Google, Yahoo and others leaked
I posted this here for the Windows users among us or those users you may know such as family, friends, clients.
2 million stolen passwords for Facebook, Twitter, Google, Yahoo and others leaked online
Quote:
More than 2 million passwords for some of the most popular spots on the Internet — including Facebook, Twitter and Google — are now a matter of public record, according to a fresh report from SpiderLabs, a research arm from security firm Trustwave.
SpiderLabs says it uncovered the bounty of potentially valuable (and often ridiculously simple) log-ins during its latest Internet sweep for the Pony botnet controller, a malware-spreading set of programs which the researchers say they're increasingly encountering online. This means the passwords were not leaked by Facebook and the like, but from thousands of infected computers that collected the data when users logged onto their accounts.......
Serves then right when naive people use simple passwords.
I know. I keep telling people not to use those simple, easy to crack passwords. But this looks like it had to do with computers being infected. So I guess you can say it serves people right for not using Gnu/Linux, lol. Or at the very least staying on top of keeping ones computer clean, scanned and using common sense when online. Seems like such a loosing battle having to tell people this over and over and over and.........
Sure any password can be stolen if the computer is infected regardless if the password is simple or complex. Just making reference to the simple passwords that the article was specking of.
Last edited by $(( 10#$x )); 12-04-2013 at 05:58 PM.
Sure any password can be stolen if the computer is infected regardless if the password is simple or complex. Just making reference to the simple passwords that the article was specking of.
This is why I go to great lengths to secure and keep my computers secure. With Linux or BSD it is not as much of a hassle, well not even close to what it is with MS Windows. I personally have some great and long passwords but as already mentioned if I don't keep my computers secure and use some common sense and have good habits when online than that means nothing.
Now if we can make the rest of the world get this, get what we all know... I think world peace is more likely but I will keep doing my little part anyways.
This is why I go to great lengths to secure and keep my computers secure. With Linux or BSD it is not as much of a hassle, well not even close to what it is with MS Windows. I personally have some great and long passwords but as already mentioned if I don't keep my computers secure and use some common sense and have good habits when online than that means nothing.
Now if we can make the rest of the world get this, get what we all know... I think world peace is more likely but I will keep doing my little part anyways.
I use linux as my main OS as well, I stopped using windows eons ago. But Habitual is correct about passwords, they can be stolen either from an infected computer or from the server side.
It's still best to update passwords once in awhile especially accounts link to banks or online stores that have your credit card info and such.
When I said serves them right was in reference to this part of the article
Quote:
SpiderLabs reports. "At least some of the victims are scattered all over the world." What's more, many of the passwords were fairly simple, with that old chestnut "123456" topping the list as the password for 15,820 accounts. ("12346789" came in at number two with 4,875 instances.) This could mean extra bad things the 30 to 40 percent of Internet users who use the same password on multiple accounts — say Facebook ... and their bank account.
Using passwords like that is just asking for trouble...
Last edited by $(( 10#$x )); 12-04-2013 at 06:28 PM.
Yes, this is very true as well. I personally do not mess with places like Facebook, Twitter and such. I really don't think their security is great, especially when they put things in place to gather info from their users. Also ccertain government agencies who purposely weaken things for their own benefit doesn't help either. Nothing is ever a hundred percent online but like you pointed out, 12345 passwords are moronic, to say the least.
I forgot about that movie. That reminds me that I need to change the combination on my luggage. I am thinking 6-7-8-9-10. But really, why should I worry. I have nothing to steal. If they want my underwear I can always buy more... I have nothing to hide and nothing worth taking. Even though I don't know what they would put in my luggage to harm others while I get the blame... I am good, all is safe, why worry
As SpiderLabs pointed out, a major problem is the use of the same password for everything. If you got my password for this site, it would get you access to a few other forums, but it certainly wouldn't work for my credit card or paypal!
Well, of course, in movies, passwords are always broken one character at a time, just before the WOPR computer decides at the last minute not to play "Global Thermonuclear War."
The internet is the real wild west. One crook after another taking advantage of the common person.
It is simply impossible for common users to know enough to prevent this sort of attack. These online crooks ought to be subject to greater punishments. I say nuke them from high orbit. Sadly, there are not always common crooks doing this. State sponsored hackers are employed in many countries.
They don't simply just get passwords, they are looking for information that they can sell somehow.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.