Check whether you've been Gawkered — now!

  gengiscant 08:43 23 Dec 2010
Locked

click here

Copied from a Windows secrets email.Might be of interest.

Last week, somebody broke into Gawker.com and stole 1.3 million account names, e-mail addresses, and passwords — and then posted all the booty on the Internet.

Your online security might not be at the top of your mind this time of year, but most likely you're doing more Internet shopping. In light of the Gawker break-in, take a few minutes to assess your passwords.

Think you're immune because you've never used Gawker? Not necessarily so. If you've spent any time at all on Lifehacker.com or Gizmodo.com — and I bet you have — your passwords may be running around with a giant "kick me" sign on their backs.

A group calling itself Gnosis broke into the Gawker.com servers and stole the site's source code, employee e-mails, user account info, and much more. Gnosis then rolled that data into a BitTorrent file and sent it pinging around the Internet. According to a Mediaite.com story, the Gnosis hack was meant to rattle Gawker's self-deluded sense of data security.

If that were the whole story, you probably wouldn't need to give it a second thought. But Gawker Media Network, owner of Gawker.com, also runs two widely used tech sites: Lifehacker.com and Gizmodo.com. The Gawker crackers picked up user info about everyone who has an account at any Gawker Media site.

In addition to user names and e-mail addresses (used to confirm the registration), the stolen data includes Data Encryption Standard (DES) encrypted passwords. DES encryption is not terribly difficult to break, as a posting by the Intrepidus Group explains in detail. In fact, more than half of the passwords have already been cracked. Duo Security posted a list of the 250 most common, already-cracked passwords — led by the insanely simple "123456" and "password."

Use the top link to check your email address.

  Seth Haniel 09:42 23 Dec 2010

posting your email to a site that you have never heard of - just validating your address so spammers can target you


Sorry not falling for that one :(

  Thalmus 10:23 23 Dec 2010

As much as I admire your paranoia about online security a simple whois lookup reveals that the site is registered by a company called Scio Security, a company that specialises in mobile security

  Seth Haniel 13:10 23 Dec 2010

Lifehacker.com and Gizmodo.com
Gawker.com Scio Security
or
MickyMouseHackYourEmailAdd.com

so will avoid any unnecessary pain thankyou

  Forum Editor 13:29 23 Dec 2010

is hardly a good basis for dismissing it out of hand.

Scio security is a small company that specialises in data security - mainly in related to medical and finance. They're not likely to spam anyone.

Gawker media is a successful media company, and its titles - Lifehacker and Gizmodo do very well, targeted at young, successful individuals.

  Seth Haniel 14:00 23 Dec 2010

if i've never heard of a site or used a site I'm am hardly going to go and submit my Email address to them on the wild chance they have it in their database -

No matter how reputable

First rule 'don't give out your Email' if you don't know where it is going.

  morddwyd 21:15 23 Dec 2010

"If you've spent any time at all on Lifehacker.com or Gizmodo.com — and I bet you have "

You lose your bet.

I've never heard of either.

  IClaudio 21:37 23 Dec 2010

Your link displays this:

'Enter your username or email address to
see if you were affected by the Gawker hack:...'

Hmmmm

As morddwyd says, never heard of either Lifehacker.com or Gizmodo.com, and unlikely to worry about them stealing anything :)

This thread is now locked and can not be replied to.

Elsewhere on IDG sites

OnePlus 5 review

See the work of famous artists playing with toys

iPad Pro 10.5in (2017) review

Comment faire une capture d’écran sur un Mac ?