don't you think about a gazillion other databases contain your email address?
i mean, if you're going to have a wake up call about internet security, wake up to the bigger picture instead.
Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
MacRumors Forums: Security Leak
- Thread starter MacRumors
- Start date
- Sort by reaction score
don't you think about a gazillion other databases contain your email address?
i mean, if you're going to have a wake up call about internet security, wake up to the bigger picture instead.
Password/account hacking has really become a pain.
Sony Playstation Network — accounts/passwords hacked in 2011.
Adobe — accounts/passwords hacked just a few days ago.
MacRumors — accounts/passwords hacked just now.
Nowhere seems safe anymore. The day Google is hacked (by others than the NSA), I'll be gettin' security paranoid and always wear shades when I'm in front of a computer.
Sony Playstation Network — accounts/passwords hacked in 2011.
Adobe — accounts/passwords hacked just a few days ago.
MacRumors — accounts/passwords hacked just now.
Nowhere seems safe anymore. The day Google is hacked (by others than the NSA), I'll be gettin' security paranoid and always wear shades when I'm in front of a computer.
Oh no! Now people can post annoying posts on MacRumors and make everyone think it was me!
I just wished providing an email address wasn't necessary to register literally everywhere, since I can't change that can I
Also, the problem with 1Password and iCloud keychain: you won't ever remember your passwords again. So one day your computer won't work, you'll be stuck with someone's borrowed PC, and won't be able to log in anywhere, ever again! So good luck with that!
I just wished providing an email address wasn't necessary to register literally everywhere, since I can't change that can I
Also, the problem with 1Password and iCloud keychain: you won't ever remember your passwords again. So one day your computer won't work, you'll be stuck with someone's borrowed PC, and won't be able to log in anywhere, ever again! So good luck with that!
They definitely saw the passwords because yesterday i got a notice from Yahoo that my email account was locked because of suspicious activity. This seems to coincide with others who had issues accessing their email provider at the same time.
Okay here's what just happened. I was going to enter my new password when iCloud Password popped up with a suggestion. I said okay why not, use your stupid computer-generated password. I didn't even bother remembering it as it's impossible.
So I change my password to that, and log out. Then try to log back in. Oh, Safari won't autofill my password with the new one. It insists on using the old one. Locked out, I had to reset my account, and make a new password that this time, I can remember.
This just reminded me to NEVER use software to remember passwords for you. They'll forget faster than you will! Just a piece of advice.
So I change my password to that, and log out. Then try to log back in. Oh, Safari won't autofill my password with the new one. It insists on using the old one. Locked out, I had to reset my account, and make a new password that this time, I can remember.
This just reminded me to NEVER use software to remember passwords for you. They'll forget faster than you will! Just a piece of advice.
I posted my experience on another thread.
You might run into problems if you use the change password feature with keychain. Part of the problem on that page seems to be that the password change form also has e-mail change mixed in with it.
You might run into problems if you use the change password feature with keychain. Part of the problem on that page seems to be that the password change form also has e-mail change mixed in with it.
I agree. They seem to be treating this like some new iOS release. It will be in the Mac Blog soon. They should force password resets for all users before next login.
We will remember this for a long time. If MR doesn't do something about security, and they eventually start selling either products/subscriptions around here, who in their right mind will give them their credit card details?
Just suffered exactly the same, generated the password with iCloud Keychain and...nothing. I also couldn't find it in the Keychain log. So I had Macrumors to reset my password
Many users use the same Username and Password on many services.
Imagine, in some months, this will happen to Google itself. It's not impossible.
The more anoying problem will be that you'll get an awfull lot of spam and crap to your inbox the next couple of month! Saying that under the assumption you used different passwords for all your activities.
True, the wording could be improved. But basically he's right. Macrumors has been hacked before during a live coverage. I would have hoped for some better security standards.
This is another reason to NEVER enter any personal details, like birthday, address, etc. into forums or websites that just don't need that kind of information. Often, forums or sites will want your entire life's history just to sign up. Also for security questions, I make stuff up, and never use the same answers on any site. Some sites I'm born in Hawaii, some in New York, some on the Moon.
MR should remove all information from our accounts except our username, make us change our password, and move to HTTPS. My very secure password is being sent in the clear. Great security you guys have here.
MR should remove all information from our accounts except our username, make us change our password, and move to HTTPS. My very secure password is being sent in the clear. Great security you guys have here.
I sympathise. This happened in much the same way (compromised admin account) to a big forum that I used to moderate several years ago, and just demonstrates how critically important it is for forum moderators/admins to have strong passwords!
I'm gradually moving all my accounts over to a password manager anyway so this is just motivation for me to do this one.
I'm gradually moving all my accounts over to a password manager anyway so this is just motivation for me to do this one.
That's what I'm talking about! Arn logged in at Starbucks' open wifi. With no SSL login, the pimple-faced kid sitting in the back jacked his login details.
----------
Since *you* knew Google meant Gmail, your post was pointless though...
