Ramblings of an old Doc

 

Just saw this…so, passing it on.

“According to the Daily Dot, nearly 5 million usernames and passwords to Gmail accounts have been leaked on a Russian Bitcoin forum. Here's what you should know.

The list has since been taken down, and there's no evidence that Gmail itself was hacked—just that these passwords have been leaked. Most sources are saying that lots of the information is quite old, so chances are they were leaked long ago—though others are claiming 60% of the passwords are still valid (not to mention really, really horrible).” – LifeHacker

There’s a link on the page to check if yours has been revealed, but why bother? At this point, it’s impossible to access the tool due to load on that site.

Easier to just change it…and do yourselves a favor: Use 2 step verification.

Source:

http://lifehacker.com/5-million-gmail-passwords-leaked-check-yours-now-1632983265?utm_campaign=socialflow_lifehacker_facebook&utm_source=lifehacker_facebook&utm_medium=socialflow

 

Updates:

Update: Looks like the IsLeaked tool is having some trouble due to unusually high traffic—if you get an error message, try reloading the page or checking back later.

Update 2: We still aren't sure how these passwords were leaked or when—but some folks over on Reddit discovered that these may not, in fact, be Gmail passwords, as original reports claimed. Instead, it looks like these are passwords leaked from other web sites over the years that were associated with Gmail addresses. But, as we know, many people used the same password for multiple accounts—which is why some of you may find that your old Gmail password was leaked (while others are seeing passwords not from Gmail).

We still don't know the full details, but the lesson remains the same: use secure passwords and enable two-factor authentication on all of your accounts!

Update 3We've replaced the original link the password checker tool with one from a known, trusted company, due to some controversy surrounding the original tool (which, while mostly speculation, has caused a small stir).

 

Additional link (via I.D.) to check your email: https://haveibeenpwned.com

 

 

Comments (Page 1)
2 Pages1 2 
on Sep 10, 2014

I avoided '2 Step Verification' for the longest time because I figured my passwords were good (I use something like LastPass to create them) and I thought it was just more work and unnecessary bull. I think it was after the last big leak like this that I broke down and started using the 2STEP Verification on everything and now I'm glad I do. It's worth the extra trouble. I use Google Authenticator and it works with many other services (Microsoft, hushmail, etc.).

 

on Sep 10, 2014

Anyone not using Google Authenticator at this point is taking a massive, unnecessary risk.  It's trivially easy to use and, even better, it integrates with other login systems.  I use it for all my Gmail accounts as well as my LastPass account and several others I'm not remembering right now.  You have to put in a six digit random code off your phone the first time you log into your account on a new computer.  That's it.  You can check a little box that removes the need to use the code again next time, in the case of something like your home computer.  

Even someone with your id and correct current password can't get access to your account without the six digit authenticator key. 

The world is what it is.  Take the simple steps to protect yourself. 

on Sep 10, 2014

Hey doc need help changed my Gmail password but now i cannot sign back into my account at all just keeps opening NewTab page every time . tried reset tried reinstall tried everything i can think of it still will not work cannot sign in any ideas please!!!

on Sep 10, 2014

Odd behavior. What browser were you using?

Also, have you tried using your old password just to see if the new one took?

Are you entering the new one correctly? Do you have caps lock on?

Is anything pressing on your Control (Ctrl) key, or is it stuck?

on Sep 11, 2014

I have tried all the above you mention I have tried everything and still today will not sign me in just keeps going to new tab page will not sync my account at all!!!!!Cannot get to sync password either I know it is a sync error but will not allow me to get to sync password either could it be a registry problem I use CCleaner exclusively? I can still get to my Gmail but everything else I cannot fix It is driving me nuts what the hell happened its not like I can call customer support for this HaHa!

on Sep 11, 2014

Banks. stores and gmail, wonder whats next.

on Sep 11, 2014

Again, which browser?

You can try uninstalling the browser with CCleaner, including cleaning the registry from all remnants and then reinstalling. Don't forget to save your bookmarks.

on Sep 11, 2014

DrJBHL

Again, which browser?

You can try uninstalling the browser with CCleaner, including cleaning the registry from all remnants and then reinstalling. Don't forget to save your bookmarks.
Hi Doc I have done both of those things my main browser is PaleMoon x64 I use Google Chrome for Business purposes only and my mail i think i found a workaround and I can access all now !!!!

on Sep 11, 2014


Banks. stores and gmail, wonder whats next.
Need to really ask that question my answer is Everything !!!!

on Sep 11, 2014

Kantok

Anyone not using Google Authenticator at this point is taking a massive, unnecessary risk.

Ah, Google....its sole reason for being is to provide a saleable database.....just the entity to entrust with 'everything'....

on Sep 11, 2014

bodadog

i think i found a workaround and I can access all now !!!!

Share it, please.

 



Quoting Kantok,

Anyone not using Google Authenticator at this point is taking a massive, unnecessary risk.



Ah, Google....its sole reason for being is to provide a saleable database.....just the entity to entrust with 'everything'....

As if we have a choice? 2 Step authentication is the best thing offered to date. You have a better way? Please share it.

on Sep 11, 2014

Once you get your Gmail password changed, head over to Outlook.com and get a better email service.

 

on Sep 11, 2014

The 2Step authentication process is what I have done did not know about this process till i saw it in Doc's and Po's post so I checked it out and went forward with it and it worked out. Bit of a pain in the butt but worth it on the whole thank you all for the help!

on Sep 11, 2014

I.D. - I can't tell you how many times Outlook.com has been hacked...and spammed by friends/contacts who got hacked.

Hasn't happened to me on Google yet...

 

Updates:

Update: Looks like the IsLeaked tool is having some trouble due to unusually high traffic—if you get an error message, try reloading the page or checking back later.

Update 2: We still aren't sure how these passwords were leaked or when—but some folks over on Reddit discovered that these may not, in fact, be Gmail passwords, as original reports claimed. Instead, it looks like these are passwords leaked from other web sites over the years that were associated with Gmail addresses. But, as we know, many people used the same password for multiple accounts—which is why some of you may find that your old Gmail password was leaked (while others are seeing passwords not from Gmail).

We still don't know the full details, but the lesson remains the same: use secure passwords and enable two-factor authentication on all of your accounts!

Update 3We've replaced the original link the password checker tool with one from a known, trusted company, due to some controversy surrounding the original tool (which, while mostly speculation, has caused a small stir).

 
on Sep 11, 2014

people should visit this address:

https://security.google.com/settings/security/activity

but please, please do not get confused over IP addresses, dial-in nodes and physical location.

2 Pages1 2