sixwheeledbeast Posted May 16, 2020 Posted May 16, 2020 Concerning thing here is the way this data is structured with interactions between people as well as private information like job titles and phone numbers. https://www.troyhunt.com/the-unattributable-db8151dd-data-breach/ Quote
james.wilson Posted May 16, 2020 Posted May 16, 2020 Bloody hell Quote securitywarehouse Security Supplies from Security Warehouse Trade Members please contact us for your TSI vetted trade discount.
sixwheeledbeast Posted May 16, 2020 Author Posted May 16, 2020 Indeed, the source is still TBD too. I would say that UUID on the data will make it traceable to somewhere, it may transpire where and how it got leaked in the near future. Quote
datadiffusion Posted May 16, 2020 Posted May 16, 2020 (edited) The suggestion was that the data was related to linkedin as people could only find their 'special' linkedin email in the breach. I do the same - linkedin@domain.com as I do for everything e.g. securitywarehouse@domain.co.uk which means compromise on one only hands over the keys to all if the passwords are the same (sometimes they are, sometimes not) and a switched on human spots that they need to substitute the recipient part of the email - and it is not always as plain and obvious. My paypal login for example, is NOT paypal@domain.com. I've tried on the 'Have I Been Pwned' site and cannot find anything for any of my domains let alone the linkedin one In fact, searching my surname suprisingly only brings up a single result I know isn't me as it relates to a single ancient exploit of a forum on a weed smoking enthusiasts site! Edited May 16, 2020 by datadiffusion Forgot this was public, domain redacted Quote So, I've decided to take my work back underground.... to stop it falling into the wrong hands
sixwheeledbeast Posted May 16, 2020 Author Posted May 16, 2020 I feel it's source is from some social platform like that or something like a calender app that links all these together e-mail, meetings with contact details etc. Even having separate email usernames only narrows it down so far. Don't think it's right to speculate TBH you can cause an unnecessary panic, people that are around these breaches have been trying to find the source for several months now, it's taken that long to add it all on to HIBP. The one piece of information to take away from these breaches is don't re-use passwords. Quote
MrHappy Posted May 16, 2020 Posted May 16, 2020 All my passwords are M1ngeM@ster69 Quote Mr Veritas God
sixwheeledbeast Posted May 16, 2020 Author Posted May 16, 2020 10 minutes ago, MrHappy said: All my passwords are M1ngeM@ster69 Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.