You are here

Have You Been pwned?

3 posts / 0 new
Last post
Tarot Redhand
Have You Been pwned?

Apparently this week is one where I get email notifications from sites I signed up for them. Today I got an email notification from the hiveibeenpwned site about a massive data breach. Before I go any further I'll explain about this site. First off pwned is hacker speak for owned which is what they say about any details they have about people. This sight is run by a security expert and checks email addresses against data obtained from various sites around the dark web (not to be confused with the deep web). In other words it will check your email address against this data and tell you if your email address is included. They also offer you the opportunity sign up to a mailing list that will inform you if your email address is detected in any new data that is come across. This is where my notification comes in.

In the past week or so they have come across the largest release of peoples data they have ever seen amounting to details about 730, 000, 000 people including me. This isn't quite as bad as it seems at first sight. For a start the data is pretty messy. For a second it appears to have been created by a spam bot which means that while the data may mean an increase in spam there is a good chance that your bank details are probably safe. Thirdly it appears that the data only refers to email accounts so (at the moment anyway) you shouldn't need to do anything about any other accounts (i.e. non-email accounts). Further details about this can be found on the site linked to at the start of this message.

So what should you do? Well for a start it wouldn't be a bad idea to change the password for your email account(s) just to be on the safe side. I have - I generated a new 32 pseudo-random character password consisting of upper and lower case letters, digits in the range 0 to 9 and certain other characters such as brackets, braces etc. The other thing you can do is to go to the site linked to above and just run your email address against it.

For the absolutely paranoid you can check that I actually posted this genuine message with a link to a genuine safe website, pm me.

TR

  • up
    100%
  • down
    0%
Empyre65

"I generated a new 32 pseudo-random character password consisting of upper and lower case letters, digits in the range 0 to 9 and certain other characters such as brackets, braces etc."

That sounds like it would be imposible to crack, but also impossible to remember.

"Never laugh in the face of a live dragon." - Bilbo Baggins

  • up
    50%
  • down
    50%
Tarot Redhand

Well if you want to crack exactly where I live and jam my mobile (aka cell in US) phone so you can break in to hunt for the piece of paper...

TR

  • up
    100%
  • down
    0%