Mother of all data breaches.

[Schnellbandit]

https://gizmodo.com/mother-of-all-breaches-exposes-773-million-emails-21-m-1831833456

Get ready, here it comes.

 

[Chill]

An interesting followup from the original story above (^^dated 1/17/19^^).

https://securityboulevard.com/2019/03/collection-1-data-breach/

 

[Schnellbandit]

Did I make a big goof by starting a thread that existed just a short time ago?

Damn.

Mods, feel free to delete. See what happens when you miss the memo?:dunno

 

[NorCalAthlete]

Only 1 of my emails has been pwned and it's only been seen once...and I use about 5 different passwords for that one email depending on where it is, so pretty sure I'm good as none of those passwords are shared with my other emails. And that email is one I only use for buying/selling shit on Craigslist, so I kinda expected it to be at risk comparatively.

 

[cfives]

I typed all my email addresses, and passwords, into the linked security check website, and they all had been hacked somehow!

 

[RightCoastBias]

Get a password manager, use it to generate complex passwords, enable 2FA when possible and profit.

 

[Bay Arean]

The whole thing makes me paranoid to even submit an email addy or a password on HIBP because once I do, it's now "in the system." It doesn't help that the dude is affiliated with Microsoft, which has long been the source of most of my computing woes.

And having done so, it makes me vulnerable to being marketed by every password protection and security service out there. Why? Because I just gave them my email address. And if I sit at the same computer and give them email addresses and passwords from the same IP, well, you can figure it out.

I don't trust anybody in this particular domain. But what a way to build password protection business.