Wednesday, September 10, 2014

- There are several such lists out there – ITavisen.no

Google acknowledges password leak.

Thursday, 11 September 2014 – 7:10

Yesterday we wrote about the 4.93 Google passwords and user names that appeared in a list on the Russian forum Bitcoin Security.

Acknowledge that it happened
Several Norwegian name was on the list, and some of our readers reported that they found themselves again there. Well to note with outdated passwords.

Since the first case only appeared in the Russian media, it was met with some skepticism.

– Multiple Lists
But now Google acknowledges that it actually happened. At the same time they say they have identified several lists of the same type that are online.

– This week, we identified several lists that allegedly contained both Google and other Internet companies use information, type Google on its security blog.

– No break-in at us
usernames and passwords strains according to Google from sources other than them, and have released through other pages where you’ve used the same username and / or password phishing (phishing) or malware.

– It is important to emphasize that neither in this or other cases due to the leakage of burglaries in Google’s systems. Often such data come unauthorized received through other sources, according to the blog.

Tricked into fake pages
There is thus no question of any intrusion in Google systems, but if users want to log in to fake pages or otherwise has been cheated out of their brukeropplynsingene.

– If you for example use the same password and username on multiple sites and one of these sites being hacked, then your information will be used to log into other sites. Alternatively, attackers use malware or phishing to capture login information, they further from Google.

– Only two percent valid
The person who posted the password list under the nick ” tvskit “claimed that 60 percent of passwords were valid, but according to Google’s own estimates, only two percent of them actually work.

There are still 98,600 passwords so Google takes no chances.

Asked to replace
– We have protected their accounts and asked users to change their password, type Google.

At the same time they say that any attempt intruders to log in all probability be stopped by your anti-kidnapping system.

This works so that if a log looks suspicious (for example, comes from an area of ​​the world you do not normally log in or from a mobile, PC, or a board you do not normally use), then it stopped.

LikeTweet
Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)