Passwords from over 3,000,000 user accounts were apparently set to “password” late last night in a wide-spread hack that affected hundreds of news, retail and Web 2.0 sites. Most affected users are completely unaware of the attack.
According to current statistics, 62% of affected users would not notice such a change as their password was already “password”.
Several sites have reported that they are taking steps to protect compromised accounts. In addition, many sites are creating a new rule to ban using the word “password” as a password.
Users are reacting fiercely to the hack but even more so to the ban many sites are putting on one of the world’s most popular passwords. Online riots are to be expected.
The hacker group named “Obvious” has claimed credit for last evening’s attack. Thousands of hacked Twitter and Facebook accounts posted the message “We are all Obvious! Don’t Expect Us”.
A 1.9 GB file containing more than 3,000,000 user names — and one password — is now available for download as a torrent file via The Pirate Bay.
To avoid problems like this in the future, we are recommending users to change their password everywhere to “password1″, which is obviously more secure.
On 01/04/11 At 06:31 AM
Related Posts
- How to hack iPhone password in just 6 minutes?
Lost your iPhone? Got it password protected? It may not be enough to stop hackers. Researchers in Germany have discovered a way to get inside the iPhone in just six minutes--without using a password... - Etc: A database of 40,000 legacy addons.mozilla.org accounts was accidentally left on a public server. The passwords were hashed and the database is said to only include old accounts.
A database of 40,000 legacy addons.mozilla.org accounts was accidentally left on a public server. The passwords were hashed and the database is said to only include old accounts.
... - Hacker group defends attacks on WikiLeaks foes
The loosely-knit Anonymous hacker group Friday called its attacks against perceived foes of WikiLeaks a symbolic protest. - on Computerworld Security News... - Researcher: free WiFi should use “free” password to protect users
On a recent trip to Hong Kong, I noticed that all of the public parks were covered by free government WiFi. I was wary of joining the open networks, though, because Ars contributor Glenn F... - Danger to IE users climbs as hacker kit adds exploit
Microsoft will likely issue an emergency kit to an unpatched IE flaw after it was added to the Eleonore crimeware kit.
View full post on Computerworld Security News... - Password Protection: How to Create Strong Passwords
Every password you have is important. Every one. Here's how to make your passwords uncrackable.
View full post on PCMag.com Security Coverage... - The New York Yankees and DSLReports.com responsible for 30,000 more data loss victims
This message may repeat. This message may repeat. For those of us old enough to have fond memories of the phonograph, the phrase "broken record" may come to mind.Yes, more user information has been le... - Sony says credit card details *were* encrypted, but questions still remain
Sony has published a new blog entry, confirming that credit card details which could have been stolen in the recent hack of the PlayStation Network were encrypted.Sony reassured users of the PlayStati... - Sony PlayStationRNetwork under attack
After discovering an external intrusion, the persons in charge took the worldwide network and the Qriocity services offline on April 20th 2011. Since then, none of the games can be played online anymo... - Is Kian Egan leaving Westlife or has he been Twitter hacked?
Kian Egan, a singer with the Irish boyband Westlife, has been forced to deny that he is leaving the chart-topping pop group after statements were posted on his Twitter account.
Egan had over 60,000 fo...
Posted on 01 April 2011. Tags: changes, group, Hacker, Millions, notice, only, password, passwords, users
The above information is reprinted from and copyrighted © by F-Secure.
