Has anyone leaked this? I'm more interested in unlocking my eponymous account I created 13 years ago then promptly lost access to without an email attached :(
Welp, I now know my login was apart of the Adobe leak.
Shouldichangemypassword.com sent me an email a few weeks ago saying my email address was found in a leaked database, although they couldn't say which one. Considering I have more than 100 accounts which use that particular email address, it didn't help at all. This site did!
Interesting. While looking at this dB, I wondered if my other accounts had been compromised and surely a few were. What was interesting is an email which I had all but forgotten like 6-7 years ago.
I found that email in a leak /paste.
Anyway to get a copy of those collection #1,#2 and others? I tried a quick search but there are random forum threads asking for cash.
Though back when I had that password my account was hacked. I'd wager this is just Gmail address+password combos collected from other leaks (read: not from Google). Really this just seems to be an attempt at sensationalizing.
The company did not leak it. People reuse passwords. "Hackers" just tried passwords from earlier dumps and accessed profiles of people who reused the same password with 23&Me
Interestingly enough, on the same pastebin site that the leak first appeared, we now have someone programmatically changing the account passwords in the leak: http://pastebin.com/LsKrspK5
There's another set of account credentials here: http://pastebin.com/jHEjBLrQ which are all starting with the letter A. It covers AA to AZ, and spans 900 accounts. Does this mean there's only ~24,000 accounts compromised?
Strangely enough, that was the 'sixth' teaser. I found the fifth -- http://pastebin.com/CsN3SrGA -- but all of the passwords in that list are "latenightbootycalls". I cannot find the 'fourth' just yet.
(Someone let me know if the link to the paste is frowned upon. It's pretty easy to find on Google, however, so I figure I'm doing no additional damage.)
I can confirm this. My email is in the leaked db. Both my mtgox and gmail passwords are unique, hard to guess by a dictionary attack and not shared with anything else. I received Google's message to change my password.
As an aside, seeing the public text file containing 60k mtgox accounts is strange. Without looking too hard I found a couple of people I know in there.
On August 20 an address of mine was entered and my Origin account was subsequently compromised. Looks like this leak matches the creds that account had before I reacted. Happily enough it was a low equity account, I had 2FA and nothing else seems to have been grabbed.
Edit: to clarify, I had 2FA on an account which alerted me to the Gmail compromise. I obviously messed up with that email account.
The title doesn't make this clear, but this was apparently a breach, resulting in a leak consisting of {Email addresses, Names, Usernames} (but not passwords). I got an email about this saying my email address was found in the leak, but I didn't realise I had ever used this thing.
[edit]
The article says this might not technically be a leak. But I'm still not sure how my email address ended up on this website. And I'm not sure how to find out which of my details got leaked.
[edit]
I edited the title of the submission to add "Data breach".
OK so I can vouch this is legit in the sense that I recognize the passwords I was sent. But I've never used it on gmail - it's a very insecure password that I use on sites I don't care about and don't give personal info. So my guess is the hack targeted some very low level sites and hope the accounts use the same pw on gmail (which is a very common occurrence).
Curious about the source of your pw's because the original leak was emails only IIRC. Email me.
Tried my email address. Only leak was due to Warframe (which I've played a total of 15 minutes of back in 2014). Tried my parents email accounts and both had zero breaches. I know for a fact my mother's email account has been in at least one data breach so I'm questioning the comprehensiveness of this tool.
may be using that exploit i'd finally be able to get back access to my account that i set up with my previous work email address and forgot to update before i left the company and lost the access to the email address.
I have an account that was definitely compromised. I had completely forgotten this account existed and never used it to sign up for anything else. I was rather surprised when I realized someone had that email and password.
reply