Re: Attention - Password and Security Update
I am a bit more worried about this messup than passwords... keeping hackers out of OUR forum posting/posing seems kinda .001% of a worry comared to all the other (ip/email/name/likely similar passwords that could easily allow spoofing for more 'real' reason hackers do what they do- identity theft and similar)
first concern- what are 'hashed passwords'?
thats the 'biggie' that got out, but i dont know what it means.
I have two questions for the admins to consider- possibly pass upstream:
1) wouldnt it be a un-loseable case for VerticalScope to file a suit against LeakedSource.com? they are selling stolen data on that site- its not like a napster argueable thing about 'sharing'- the theft is no good for anything more than malicious reasons. sue the **** out of them, get their recrds and sue anyone that accessed others data thru them...i'm sure you could find a law firm that would do it on contingency- heck, let them have 100%...Vertical scope lost only trust in this theft- all us users are the ones put at risk, please consider turning the tables on these thieving idiots.
2) what is vertical scopes password stuff going to do about preventing future stuff like this? the folks that would steal this info dont want to edit our posts- know what i mean? guaranteed they want our IP to spoof, our email and password tendencies so they can imitate or simpler yet hack banking/paypal type sites. the forum issue is nothing compared to what damage has already been done... while part of me would love to scream at VerticalScope about this breach, I know hackers are getting better at it- and i wouldnt doubt a microsoft hole allowed it.
lastly, I really think it might be 'nice' for VerticalScope to add emphasis to the forum attention thing:
EVERYONE IN HERE- I'D SUGGEST GETTING A PIECE OF PAPER AND CHANGE PASSWORDS ON EVERY SITE INVOLVING POSSIBLE MONEY IF YOU USE SIMILAR PASSWORDS.
getting ahold of cash is the only reason hackers/****ty sites like leakeddata sell this stuff- so idiots with little knowledge can try to call themselves 'hackers' by seeing password similarities... even the number of characters would give them a tool to limit tries... go random- pick a page out of a book for words, throw dice for truly random number generation, use that for random spacing between letters to drop in random characters...random truncation of words, random length(i think thats maybe one of the biggest) the type of thing a hacker couldnt ever write a program to try and sort patterns from...