MASSIVE data leak; 700 million emails compromised

[shubla]

You can check if your email has become insecure here: https://haveibeenpwned.com/
And any passwords, particularly ones you use on multiple sites, here: https://haveibeenpwned.com/Passwords

I like how these two sites together can be used to harvest more emails and passwords.

Yes it truly brings to my mind the sites that ask for your credit card information so that they can check if you ahve been compromised.

[Burinn]

im using the same password I used since playing runescape 15 years ago

come at me hackers

Yikes!

[linkfanpc]

You can check if your email has become insecure here: https://haveibeenpwned.com/
And any passwords, particularly ones you use on multiple sites, here: https://haveibeenpwned.com/Passwords

I like how these two sites together can be used to harvest more emails and passwords.

It's run by a well known dude and they're both perfectly secure and used alot, but like i said if you're skeptical at all nobody's gonna blame you to refuse.

[MagicManICT]

I like how these two sites together can be used to harvest more emails and passwords.

Yes it truly brings to my mind the sites that ask for your credit card information so that they can check if you ahve been compromised.

I wouldn't even think of visiting either of these sites because the answer is always "Yes." Why do I need to look such information up and see if my credentials show up there?

It's run by a well known dude and they're both perfectly secure and used alot, but like i said if you're skeptical at all nobody's gonna blame you to refuse.

Who is this "well known dude?"

I hate people who link that xkcd, at least I have dozens of accounts, I would never be able to remember 30 different passwords at all even if they were some poems from shakespeare.

And yet you know hundreds, nay thousands!, of lines of code by heart, I'm sure, being the software guy you are. It doesn't have to be Shakespeare. The point is to exercise your long term recall and come up with something you can remember. I have a cousin that's as dumb as a box of rocks from too many years of smoking entirely too much meth, and he can rattle off a 16 digit credit card number... can't remember half the shit from when he was a kid, though. And I'm sure you have the URLs to at least 30 sites memorized. You sell yourself short, sir.

[Vassteel]

This is a compiled list its not really a data breach. there are a few lists like this floating around that are in the Billions.
Personally I use the Ledger Password Manager that came with my crypto wallet. Sure it adds extra steps to the login process but ide rather jump through a hoop than to have shit stolen by some chineese bum.

Also using Browser password autofill is generally a bad idea mmmmk

[Glorthan]

It's run by a well known dude and they're both perfectly secure and used alot, but like i said if you're skeptical at all nobody's gonna blame you to refuse.

Who is this "well known dude?"

Troy Hunt is an old hand in the security industry worth a lot of money. The website is kind of a feeder to his consulting work, but he's very, very expensive these days.

He's not just trying to make a quick buck farming data, the Australian goverment integrated this site into their internal security procedures recently, and he makes the api endpoints accessible on request I believe. So it's kind of a public good as well.

[Vassteel]

It's run by a well known dude and they're both perfectly secure and used alot, but like i said if you're skeptical at all nobody's gonna blame you to refuse.

Who is this "well known dude?"

Troy Hunt is an old hand in the security industry worth a lot of money. The website is kind of a feeder to his consulting work, but he's very, very expensive these days.

He's not just trying to make a quick buck farming data, the Australian goverment integrated this site into their internal security procedures recently, and he makes the api endpoints accessible on request I believe. So it's kind of a public good as well.

I know these sites are used by the Navy to identify individuals who might have compromised accounts.

[MagicManICT]

I know these sites are used by the Navy to identify individuals who might have compromised accounts.

The US Navy are the ones that implemented TOR if I read correctly. If anyone knows these sites and means of figuring out such information, it's SIGINT and the NSA and equivalent bodies from other major nations.

[Vassteel]

I know these sites are used by the Navy to identify individuals who might have compromised accounts.

The US Navy are the ones that implemented TOR if I read correctly. If anyone knows these sites and means of figuring out such information, it's SIGINT and the NSA and equivalent bodies from other major nations.

Yep, Nation states are usually one of the largest collectors of such data.