At the end of December 2010, somebody broke into Gawker.com and stole 1.3 million account names, e-mail addresses, and passwords — and then posted all the booty on the Internet.
Think you're immune because you've never used Gawker? Not necessarily so. If you've spent any time at all on Lifehacker.com or Gizmodo.com — and I bet you have — your passwords may be running around with a giant "kick me" sign on their backs.
A group calling itself Gnosis broke into the Gawker.com servers and stole the site's source code, and much more.
If that were the whole story, you probably wouldn't need to give it a second thought. But Gawker Media Network, owner of Gawker.com, also runs two widely used tech sites: Lifehacker.com and Gizmodo.com. The Gawker crackers picked up user info about everyone who has an account at any Gawker Media site.
In addition to user names and e-mail addresses (used to confirm the registration), the stolen data includes Data Encryption Standard (DES) encrypted passwords.
Weak password security can be costly
If there's the remotest chance you've posted a comment on Lifehacker.com or Gizmodo.com, go immediately to Duo Security's "Did I get Gawkered" site and enter your e-mail address. If your name's on the list, change your passwords!
Enter your e-mail address into Duo Security's "Did I get Gawkered" site and find out if your address and password are compromised.
Now would be a good time to review the strength of all your passwords.
We’ve already discussed that subject, right?
Source: http://tinyurl.com/4j2pv5q