Mother of All Breaches Exposes 773 Million Emails, 21 Million Passwords

Gizmodo ^ | 01/17/2019 | Victoria Song

[taxcontrol]

We are looking into that. There are some legal issues with cracking hashes. However, if the service checks against a known set of hacker dictionaries, without providing the actual password - that MIGHT be doable.

Gets very close to some laws out there.

[Yaelle]

Cool site to check whether you were pwned. I was pwned on disqus.

[Yaelle]

I still go to the beach and FR.

---

Don’t you see? That is the combo. Freeping at the beach is how these things happen.

[Swordmaker]

Another MEGA breach of many computer users’ data that could impact Apple device users’ security by exposing their emails, addresses, passwords, etc., due to stolen data from a breach at an apparently insecure cross-platform data aggregator. This security breach impacts ALL PLATFORMS, not just Apple. Use the link to learn if you have a problem and need to change your passwords. Apple users should use the built in password generator and Keychain system to manage passwords which recalls your passwords for you across all your Apple devices. . . It generates a very complex passcode for each site. —PING!

Apple and All Platform Security Ping!

If you want on or off the Mac Ping List, Freepmail me.

[conservatism_IS_compassion]

It generates a very complex passcode for each site.

. . . which you can’t even type in correctly if you have to.

[roadcat]

It generates a very complex passcode for each site.

. . . which you can’t even type in correctly if you have to.

That's good. When machines do it for you, complex passcode generation is fine. (As for user passwords, I wouldn't recommend creating your own very complex passwords, as I have lost access in the past due to forgetting and losing written-down passwords. Back in the early 1990s I attended a Microsoft workshop where the security "expert" recommended everyone use 30-character unique passwords with mixed symbols and alphanumerics. Screw that, unless a machine does it for you!)

[rarestia]

Looks like time to change *all* your passwords, eh?

Use a credential vault like KeePass or LastPass, and setup a unique password for every site and thing you do. One password compromise doesn't spell doom for the others.

[Irish Eyes]

Bookmark,....... from a novice to this kind of thing.

[Uri’el-2012]

These guys ---> Mega (service)

[dayglored]

All platform password alert ... PING!

You can find all the Windows Ping list threads with FR search: just search on keyword "windowspinglist".

Thanks to ShadowAce and Swordmaker for the pings!

[tubebender]

I’ve used this password since smoke signal days

OICU812

[goodnesswins]

What about 2 factor id?

[BenLurkin]

Like the poor kid said to the fridge: “OICURMT”

[matthew fuller]

Thanks for posting this info.

[bitt]

p

[SunkenCiv]

Yeah, how about that, big breach, a real son of a breach.

[Karoo]

I have a pw manager...Dashlane. Do u think my pw are safe there?

[TheBattman]

Can we start tracking these hackers down and executing them on the spot? Please? I’ll provide the bullets!

[daniel1212]

Saw this yesterday at https://techstartups.com/2019/01/18/hackers-strike-again-773-million-emails-21-million-passwords-leaked-in-mother-of-all-breaches-are-you-affected and should have told you. Found some pwords via https://haveibeenpwned.com/Passwords that appeared elsewhere on the Internet, though that does not mean they are connected to your email, some which I also found had been used. took corrective action on one .

The breach was first reported by Troy Hunt, the security researcher who runs the site Have I Been Pwned (HIBP), where you can check if your email has been compromised in a data breach. In his blog, Hunt says a large file of 12,000 separate files and 87GB of data had been uploaded to MEGA, a popular cloud service. The data was then posted to a popular hacking forum and appears to be an amalgamation of over 2,000 databases. The troubling thing is the databases contain “dehashed” passwords, which means the methods used to scramble those passwords into unreadable strings has been cracked, fully exposing the passwords.

[Elsie]

So; I log into their site and give them my password to see kf it’s be stolen??