{"id":352,"date":"2012-08-07T12:21:46","date_gmt":"2012-08-07T18:21:46","guid":{"rendered":"http:\/\/www.goodjobsucking.com\/?p=352"},"modified":"2012-08-07T12:21:46","modified_gmt":"2012-08-07T18:21:46","slug":"the-breach-that-keeps-on-giving","status":"publish","type":"post","link":"https:\/\/www.goodjobsucking.com\/?p=352","title":{"rendered":"The breach that keeps on giving"},"content":{"rendered":"

In what should be old news by now, back in June, LinkedIn<\/a>‘s servers were breached<\/a>, leaking around 6.5 million user names and passwords.\u00a0 Hackers were then able to determine (for the most part) what passwords were associated with the hashes and accounts.\u00a0 While this may have compromised LinkedIn accounts, the greater problem is with any other accounts that happen to use the same username and password.<\/p>\n

In my case, the only such pair was LinkedIn and Stamps.com<\/a>, which was a bit sloppy on my part, but since I’m not in the habit of re-using passwords at all, it hadn’t occurred to me, nor had it occurred to me that this would present a problem until somebody managed to send an express package from the Ukraine, charging my account for it, to the tune of $60 or so.<\/p>\n

While I’m kicking myself for this, it could have been a lot<\/em> worse, even if I were to use the same password for email, which would then have allowed hackers to intercept “lost password” requests for all the accounts I have which don’t use the same passwords.<\/p>\n

The lesson I take away is that even accounts I consider “unimportant” because they’re not linked to credit cards or can be used to make purchases should be given random passwords rather than common, disposable passwords.\u00a0 And, of course, chaining accounts is bad<\/a>.<\/p>\n

 <\/p>\n

 <\/p>\n","protected":false},"excerpt":{"rendered":"

In what should be old news by now, back in June, LinkedIn‘s servers were breached, leaking around 6.5 million user names and passwords.\u00a0 Hackers were then able to determine (for the most part) what passwords were associated with the hashes and accounts.\u00a0 While this may have compromised LinkedIn accounts, the \u2026 Continue reading → <\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"_links":{"self":[{"href":"https:\/\/www.goodjobsucking.com\/index.php?rest_route=\/wp\/v2\/posts\/352"}],"collection":[{"href":"https:\/\/www.goodjobsucking.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.goodjobsucking.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.goodjobsucking.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.goodjobsucking.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=352"}],"version-history":[{"count":2,"href":"https:\/\/www.goodjobsucking.com\/index.php?rest_route=\/wp\/v2\/posts\/352\/revisions"}],"predecessor-version":[{"id":354,"href":"https:\/\/www.goodjobsucking.com\/index.php?rest_route=\/wp\/v2\/posts\/352\/revisions\/354"}],"wp:attachment":[{"href":"https:\/\/www.goodjobsucking.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=352"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.goodjobsucking.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=352"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.goodjobsucking.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=352"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}