this post was submitted on 03 Jan 2024
795 points (94.1% liked)

Technology

59602 readers
4497 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
 

Hope this isn't a repeated submission. Funny how they're trying to deflect blame after they tried to change the EULA post breach.

you are viewing a single comment's thread
view the rest of the comments
[–] reverendsteveii@lemm.ee 22 points 10 months ago (2 children)

https://haveibeenpwned.com/

Gentle reminder to plop your email address in here and see if you, much like 14,000 23andMe users, have had an account compromised somewhere. Enable two-factor where you can and don't reuse passwords.

[–] Eezyville@sh.itjust.works 4 points 10 months ago (1 children)

Welp my two gmail address have been pwned. Good thing I don't use them and I have limited use of Google services.

[–] drivepiler@lemmy.world 7 points 10 months ago* (last edited 10 months ago) (1 children)

Just to clarify; It doesn't necessarily mean that your Google account password is compromised. It lists data breaches of services where you used the provided email to register. The password you chose for that service at the time of the breach has been compromised. If you don't use the same password everywhere, or changed your password after the breach, your other accounts are not compromised.

Also, as OP said, use two-factor authentication. And please also use a password manager.

[–] Eezyville@sh.itjust.works 2 points 10 months ago

I understand that. I use KeePassXC and love it. I just notice that those gmail accounts get all the spam so I abandoned them.

[–] Tier1BuildABear@lemmy.world 2 points 10 months ago (1 children)

It's saying I've been hacked on websites I've legitimately never even heard of, websites I have 100% never interacted with. Is this just a normal consequence of companies sharing all my data with other companies?

[–] reverendsteveii@lemm.ee 1 points 10 months ago

I can't speak to how you ended up on the list. The way haveibeenpwned works is that they crawl publicly available credential dumps and grab the associated usernames/emails for each cred pair. However it got there, your email ended up in one of those dumps. Recommend you change your passwords, make sure you don't repeat the same password across multiple sites and use a password manager so you don't have to remember dozens of passwords yourself.