Category Archives: Troy Hunt

Nearly 773 million email addresses leaked, spelling trouble for people who re-use passwords

Posted on by

The numbers just seem to keep getting bigger. Nearly 773 million email addresses and almost 22 million unique passwords were discovered on the cloud storage service MEGA, researcher Troy Hunt announced in a blog post Thursday. The 87-gigabyte database is spread across 12,000 files and appears to have originated from many different sources dating back to 2008, Hunt said. Some 140 million email addresses and 10 million passwords are new to Hunt’s Have I Been Pwned website, the free service that tracks whether user credentials have been made available in data dumps. Users can enter their email address in the Have I Been Pwned service to check if their information was included. The data, since removed, is known as Collection #1. “What I can say is that my own personal data is in there and it’s accurate; right email address and a password I used many years ago,” Hunt wrote. […]

The post Nearly 773 million email addresses leaked, spelling trouble for people who re-use passwords appeared first on CyberScoop.

Continue reading Nearly 773 million email addresses leaked, spelling trouble for people who re-use passwords

A Breach, or Just a Forced Password Reset?

Posted on by

Software giant Citrix Systems recently forced a password reset for many users of its Sharefile content collaboration service, warning it would be doing this on a regular basis in response to password-guessing attacks that target people who re-use passwords across multiple Web sites. Many Sharefile users interpreted this as a breach at Citrix and/or Sharefile, but the company maintains that’s not the case. Here’s a closer look at what happened, and some ideas about how to avoid a repeat of this scenario going forward. Continue reading A Breach, or Just a Forced Password Reset?

Vehicle Infotainment Privacy, Instagram’s Accidental Password Exposure, Firefox Monitor – WB44

Posted on by

This is your Shared Security Weekly Blaze for November 26th 2018 with your host, Tom Eston. In this week’s episode: Vehicle infotainment privacy, Instagram’s accidental password exposure, and the Firefox monitor data breach notification ser… Continue reading Vehicle Infotainment Privacy, Instagram’s Accidental Password Exposure, Firefox Monitor – WB44

Firefox Monitor starts tracking breached email addresses

Posted on by

Mozilla has formally launched Firefox Monitor, a privacy-engineered website that hooks up to Troy Hunt’s Have I Been Pwned? (HIBP) breach notification database. Continue reading Firefox Monitor starts tracking breached email addresses

Firefox is adding ‘Have I Been Pwned’ alerts

Posted on by

Mozilla’s Firefox will soon feature a tool called “Firefox Monitor” that alerts users to data breaches via a partnership with Have I Been Pwned.   Have I Been Pwned maintains a database of major breaches so people can know when sensitive data including usernames and passwords are stolen by hackers. Troy Hunt, the Australian security researcher behind Have I Been Pwned, detailed the new trial integration between HIBP and Firefox in a blog post. Here’s how Firefox Monitor looks: “This is major because Firefox has an install base of hundreds of millions of people which significantly expands the audience that can be reached once this feature rolls out to the mainstream,” Hunt wrote. Besides Firefox, Hunt’s Have I Been Pwned is being integrated into a wide array of apps. The password manager 1Password now allows users to search the Have I Been Pwned database from within the app. Although it’s long been […]

The post Firefox is adding ‘Have I Been Pwned’ alerts appeared first on Cyberscoop.

Continue reading Firefox is adding ‘Have I Been Pwned’ alerts