One of the largest breaches ever exposed a ton of email addresses.
https://www.wired.com/story/collection-one-breach-email-acco…
8 Likes
One of the largest breaches ever exposed a ton of email addresses.
https://www.wired.com/story/collection-one-breach-email-acco……
Looks to me like a sales pitch by the person/entity who wrote the article.
4 Likes
Hmm… I guess it could be. Either way, changing your password doesn’t cost a thing.
Use a password tool, like 1password or lastpass.its good for you.
1 Like
Austin,
There is no way I am going to go to a website and type in my various passwords to see if they are found!
I would wonder who might have access to the data on that site and how it might be used.
Gene
All holdings and some statistics on my profile page
http://my.fool.com/profile/gdett2/info.aspx
11 Likes
Okay everyone, please know I’m not advocating for anyone to purchase anything or share any of their passwords with any sites.
Was trying to share awareness that there was a large leak/hack/whatever and that emails could have been leaked.
That’s all…
8 Likes
There is no way I am going to go to a website and type in my various passwords to see if they are found!
Um, you don’t type in passwords, you type in usernames/email address and they don’t supply the password. They tell you if that account is on the list, and if so, from which breach.
It’s not a scam, but yes, they are promoting their 1password product.
Knowing the breach source, which they provide, is important. For instance, an email address I use has been hacked, but it was hacked from LinkedIn, so only the password stored on LinkedIn was hacked - not the actual password at the email provider (since I kept them different). And yes, I’ve changed both.
And yes, using a password manager is helpful in that it enables you to easily have different passwords on different sites, which is important in containing the damage.
8 Likes
Use two factor authentication whenever possible. On all banking or financial sites use key fobs.
Andy
Um, you don’t type in passwords, you type in usernames/email address and they don’t supply the password. They tell you if that account is on the list, and if so, from which breach.
Correct, but the website does ALSO have a page where you can type in a PASSWORD (unassociated with a username/email) and it will tell you if that password has been found in it’s database of hacked passwords, letting you know that it needs to be changed.
I entered 5 different fake email addresses each time making the address longer, more complicated and unlikely to be used. The site returned identical results each time saying " catastrophe "
10 Likes