Just got this through from my professional body so I am fairly sure its genuine looks like a lot of email and password information has been leaked somewhere https://eandt.theiet.org/content/ar...en-email-addresses-leaked-in-huge-data-breach I checked my email addresses on the Have I been Pwned link in the article and my work ones are clear but my personal ones arent I dont tend to buy or register for things with my work email except for professional purposes so I guess its the commercial stuff that has been leaked Might be worth a password update - especially if you use the same username and password for multiple sites
Got an email this morning from Have I been Pwned informing me two of my email address are on the list. You can also check if your password(s) is out in the open by using their password checker. https://haveibeenpwned.com/Passwords
I've been "pwned" also. Recently I've started receiving emails demanding money to stop videos of me watching (actively!) porn being sent to my wife and other family members. They're ****** of course, but just in case anybody gets one, it's not me...
Just checked an old email address of mine, which I know has been closed down, and it says I've been pwned. Seems a bit odd.
Thats not so useful unless you have a way to check if it is in any way linked to your account For example if you put in Oakwell as a password it tells you its been seen 32 times but unless there is anything to link it to your account it shouldnt be anything to worry about - Its not one of my passwords by the way I did find a password I used on a few shopping sites has been used by others and possibly is linked to one of my email accounts so I probably should change it. Interestingly my password for on here is out in the wild as well but as we dont login with an email address its a stretch to be worried
Not really - if its one you used in the past and some site saved it and then got hacked it could still be on the list I doubt whoever is flogging the list on has checked the emails are genuine - I am sure some people have even used none existent email addresses to register for some sites but they will still be on the lists
While you may have closed the account, the email address itself will still be on the lists shared between hackers.
So let me get this right ... they're asking people to go to this particular website and type in their email address & then possibly also go further and check to see if their password is on another list this website has ... and you do this probably within minutes and most likely from the same pc ( with the same ip address). Aye okay sounds cosher to me.
Slightly off topic but is there any reason why barnsleyfc.org.uk is not a secure website? It’s the only website that I’m aware of that requires log in details but isn’t secure. I presume it’s a financial issue but I’m not a tech expert.
Exactly what I thought. Why would anyone go on a single site and enter a login ID and pwd? Like that Public information ad on the TV with the smiling call centre girl asking for "numbers 1 and 3 of your 4 digit security code", apologising, saying she did not hear that and " can you give me numbers 2 and 4?". Her smile becomes a smirk and she looks at the camera and says " did you see what I did there?"
It checks emails and passwords separately. Obviously these could potentially be linked by IP address.
Yes it’s probably only of use if you tend to use complex passwords. I did use the same semi-complex password for certain websites, like forums. This is when I consider the details they hold to be basic. Username and email. This password is know on that checker. So I’ve since gone through those sites and changed them. I keep all my login details in 1Password, so it was easy to see which sites used that password. Where available, I now always use 2 factor authentication. Like on here