NeoGAF

BigJonsson · (Today, 12:02 AM)

SMH @ 123456

Solstice · 12:09 AM

12345?

That's amazing, I've got the same combination on my luggage!

DMPrince · (Today, 12:06 AM)

the passwords i use as 12345, etc are just dummy accounts. i'm probably in there somewhere.

Nokterian · (Today, 12:08 AM)

Originally Posted by Mariolee

I'm so done.

Un..believable....

So far no message for me that it's has been hacked..i am good. Thanks to lastpass.

sn00zer · (Today, 12:10 AM)

Is there a way to check if my login info is on there?

-COOLIO- · (Today, 12:11 AM)

Originally Posted by jsnepo

So keylogger huh? I don't really login to accounts outside of my house so I doubt I'm compromised. My passwords are different per account and are alpha-numeric.

youre never completely safe. your keyboard could have come with a keylogger for all you know

Relix · (Today, 12:13 AM)

Two Step Verification. Use it gents. USE IT.

jimi_dini · 12:16 AM

Originally Posted by Kajigger

If your password is 123456, 000000, 111111 or any other thing like that you deserve to have someone steal it.

Hey, don't blame me.
I just re-used the US nuclear launch code. I honestly thought it was safe.

http://www.todayifoundout.com/index....ates-00000000/

-COOLIO- · (Today, 12:14 AM)

Originally Posted by Nokterian

Un..believable....

So far no message for me that it's has been hacked..i am good. Thanks to lastpass.

who would send you the message? its not like a database was hacked. this was malware.

Eric C · (Today, 12:22 AM)

I don't think I"m infected but might as well do another scan with a different program just to be sure.

Which antivirus programs are confirmed to scan for this Pony Botnet thing?

jsnepo · (Today, 12:24 AM)

Originally Posted by -COOLIO-

youre never completely safe. your keyboard could have come with a keylogger for all you know

Who would put a keylogger in my keyboard? Besides this is a very old keyboard. It probably predates Pentium 4.

slit · (Today, 12:55 AM)

Originally Posted by BigJonsson

SMH @ 123456

Psh, that's nothing. I crack passwords at my company for internal audits. You should see what some people try to get away with on admin accounts.

threetri333 · (Today, 12:57 AM)

Psshh, they also have to enter a 6 digit password that's sent to my phone to access my google account.

Solstice · (Today, 01:00 AM)

Originally Posted by threetri333

Psshh, they also have to enter a 6 digit password that's sent to my phone to access my google account.

You should just use the authenticator app. It's a lot more awesome

Zombie James · (Today, 01:03 AM)

Originally Posted by Mariolee

I'm so done.

Accoun · 01:05 AM

Originally Posted by -COOLIO-

who would send you the message? its not like a database was hacked. this was malware.

Google for example informs of "suspicious activity", like suddenly loging from a far away country. I guess that's what he meant.

Except it's not known whether any of these were actually tested. A few maybe.
Also, "Information discussed in this blog post was also disclosed to relevant parties." (from the blog bost), so maybe they have sent the lists of accounts to the companies so they can mass-message?

Mudkips · (Today, 01:06 AM)

Originally Posted by Stumpokapow

14+ character four character types passwords = top one hundredth of one percent of passwords.

Get
At
Me

Elfforkusu · (Today, 01:09 AM)

Targeted attack on the Netherlands? Why?

Tesseract · (Today, 01:09 AM)

most of my passwords are 19-25 characters (except gaf)

and they're all different, stored in my brain stuffs

MEET ME SOMEWHERE

Crayons · (Today, 01:10 AM)

Changed passwords, took a shower, set my house ablaze.

Gintoki313 · (Today, 01:11 AM)

This is why websites should have it listed that you need a certain amount of both letters and numbers. To stop this 12345 stuff.

AstroNut325 · (Today, 01:14 AM)

As soon as I saw the thread title I changed my Facebook and Google passwords. Now I will read the thread.

Edit:

Originally Posted by jimi_dini

Hey, don't blame me.
I just re-used the US nuclear launch code. I honestly thought it was safe.

http://www.todayifoundout.com/index....ates-00000000/

WTF... and it's not The Onion! WTF....

kick51 · (Today, 01:17 AM)

2-pass verification and keypass to generate and store insane passwords. It's a pain in the ass at first, but get in the habit.

Unless you bank with chase, who doesn't seem to have 2FA because they're fucking dumb.

tim.mbp · (Today, 01:19 AM)

RIP Holland.

AstroNut325 · (Today, 01:23 AM)

Originally Posted by kick51

2-pass verification and keypass to generate and store insane passwords. It's a pain in the ass at first, but get in the habit.

Unless you bank with chase, who doesn't seem to have 2FA because they're fucking dumb.

Everytime I log into Chase from a different computer it sends me a code via SMS and authenticates against that and my password.

You Are Viewtiful · (Today, 01:23 AM)

Originally Posted by kick51

2 factor authentication mo'fuckaaaaaa

edit: oh sweet I'm in the "excellent" bracket, the hackers like me.

Part of this elite club.

kick51 · (Today, 01:24 AM)

Originally Posted by AstroNut325

Everytime I log into Chase from a different computer it sends me a code via SMS and authenticates against that and my password.

you reminded me and i'm fucking dumb for forgetting that (been on the same computers forever and just don't use cafe PCs for that as a rule)....but I'd like 2FA every single time. It's a bank account, should be secure as possible.

AstroNut325 · (Today, 01:29 AM)

Originally Posted by kick51

you reminded me and i'm fucking dumb for forgetting that (been on the same computers forever and just don't use cafe PCs for that as a rule)....but I'd like 2FA every single time. It's a bank account, should be secure as possible.

No disagreements there.

Crisco · (Today, 01:30 AM)

Whatever, steal my shit, I ain't scurred.

Starphoenix · 04:27 AM

It never fails. My cyber security class follows me wherever I go.

Thank you GAF for letting me know. Just changed my passwords.

Batigol · (Today, 04:28 AM)

My password is 123456789. It's so obvious that no one would ever think to try it. It's genius, really

yogloo · (Today, 04:31 AM)

Well it's best to check your computer for the key logger before changing your password. Otherwise it's useless.

Jakeee · (Today, 04:33 AM)

Originally Posted by Mudkips

Get
At
Me

That's just so unpractical.

Coreda · (Today, 04:36 AM)

Related: top 100 passwords from a small slice of Adobe's 153 million user password breach.

Top 10:

1. 123456
2. 123456789
3. password
4. adobe123
5. 12345678
6. qwerty
7. 1234567
8. 111111
9. photoshop
10. 123123

In fact because they didn't properly store the passwords someone made a crossword puzzle based on the password hints.

Yep, most people use dumb passwords.

Notrollious · (Today, 04:37 AM)

2 step authentication. Turned it on for Facebook after I got a notice that someone from China(?) was requesting access to my account and haven't looked back.

Also this reminded me to change my bank password. It had been a while.

Derrick01 · (Today, 04:38 AM)

Originally Posted by Elfforkusu

Targeted attack on the Netherlands? Why?

So these passwords are from people over there?

Shrinnan · (Today, 04:55 AM)

This is as good a place as any to ask this - what's probably the best software to use when it comes to checking (and getting rid of) for key loggers, trojans, and other malicious programs?

PossumMeat · (Today, 05:04 AM)

Originally Posted by Shrinnan

This is as good a place as any to ask this - what's probably the best software to use when it comes to checking (and getting rid of) for key loggers, trojans, and other malicious programs?

Malwarebytes, SuperAntiSpyware, HitManPro.

Shrinnan · (Today, 05:08 AM)

Originally Posted by PossumMeat

Malwarebytes, SuperAntiSpyware, HitManPro.

All three together or will just one do?

Angelus Errare · (Today, 05:09 AM)

My old password use to be

ass so fat i need a lap dance@0

XiaNaphryz · (Today, 05:10 AM)

Looks like most of the passwords are from the Netherlands? 1.8 million or so. Though there's probably some proxy shenanigans going on.

Cipherr · (Today, 05:12 AM)

2 step auth on both my google, and my unused old ass 1998 or so Yahoo mail account.

And I dont use the same pass for anything. Fuckem.

jaxword · (Today, 05:25 AM)

Little confused; how did the passwords get "posted online"? Did they mean like on an anonymous message board or do they mean in underground hacker communities?

Stumpokapow · (Today, 05:31 AM)

Originally Posted by Jakeee

That's just so unpractical.

What's "unpractical" about it? I mean, those passwords are a little weak, I agree, but unfortunately some sites have a maximum password length.

AwakenedCloud · (Today, 05:42 AM)

I used to be part of team "password" back in the day, before the internet blew up. Those were the good old days, back when you could let your kid walk to the store or you could leave the door to your house open without worrying that anybody would try to break in.

Coreda · 05:47 AM

Originally Posted by jaxword

Little confused; how did the passwords get "posted online"? Did they mean like on an anonymous message board or do they mean in underground hacker communities?

Also pastebins. Won't say too much, but there's way too much info that can be found there.

Originally Posted by Kwixotik

This is the BBC article photo lol

Haxorz: in your computer, stealing yo data.

Kwixotik · (Today, 05:45 AM)

This is the BBC article photo lol

yogloo · (Today, 05:47 AM)

Originally Posted by Stumpokapow

What's "unpractical" about it? I mean, those passwords are a little weak, I agree, but unfortunately some sites have a maximum password length.

What if you are on a mobile device and has to type it in.

Stumpokapow · (Today, 05:48 AM)

Originally Posted by yogloo

What if you are on a mobile device and has to type it in.

Why would someone need to type it in on their mobile device, I'm not sure I follow?

maxcer0081 · (Today, 05:49 AM)

Originally Posted by samus i am

Changed it to 123456. The coast is clear.

\