Please don’t take the results below too seriously. Hacking them really doesn't gain them much.Note. My godaddy was hacked because i didn't have 2-step, but after recovering my account(long process), i enabled 2 step on it and hasn't been hacked since.Īnything else are just forums and random websites which don't handle my credit card info. I literally got over 100 messages before i woke up and quickly changed my password. Someone tried to hack my paypal, but it kept sending me text messages with authorization codes, at like 3am. None have been hacked since implementing 2 step. I guess this is a benefit of using things like password managers that randomly generate new passwords? not that its smart or that i do this (anymore.) but lets say my gmail pass was the same as my TD bank, they now have my email and pass. ġ7924818 said:but even with 2 step, i thought a big part of password breaches like this is that if you use any common passwords, they now have one of your passwords. Follow us on Facebook, Google+, RSS, Twitter and YouTube. This time, just make sure it’s something more unique than “password.”ĭerek Forrest is an Associate Contributing Writer for Tom’s Hardware and Tom’s IT Pro. This greatly impacts the data’s credibility and value, similar to an expensive sports car being sold for pennies at auction.” It's Time For A Change (Of Passwords)ĭespite what the eventual findings may be, if you are using an email account from one of the affected providers, you could (and should) save yourself from potential unauthorized access by changing your password right now.
“He can’t be serious based on today’s exchange rate, it is less than one U.S. “50 rubles is what the hacker wants for this incredibly large set of data,” stated Hold Security. Hold Security also doubts the integrity of the stolen data, citing that the credibility and value of the stolen information may not be as impactful as the hacker boasts if they are willing to give up the data for some conversation and social media acclaim. stated that it would warn potentially affected users once they have enough information, but the company’s initial checks found no live combinations of user names and passwords that match existing emails. Other companies such as Google and Yahoo have yet to comment on the breach. “Microsoft has security measures in place to detect account compromise and requires additional information to verify the account owner and help them regain sole access," read the statement. The company estimated this translates to roughly 42.5 million viable credentials, which is about 15 percent of the total, something Hold Security says it has never seen before.ĭespite the high amount of possibly-vulnerable email accounts, Microsoft has issued a statement to Reuters to assure its customers that they have little to fear.
The company is still working to identify the specific breaches or vulnerabilities that allowed the hacker to gain access to the mega-sized data dump of stolen email logins, but Hold Security also determined that only 272 million of the 1.17 billion pilfered credentials were unique.