Author Topic: Plenty of leaked passwords .. (IEEE, uncrypted)  (Read 4662 times)

0 Members and 1 Guest are viewing this topic.

Offline JoannaK

  • Frequent Contributor
  • **
  • Posts: 337
  • Country: fi
    • Diytao making blog
Plenty of leaked passwords .. (IEEE, uncrypted)
« on: September 25, 2012, 11:15:14 pm »

Quote
The world's largest professional organization for computer engineers exposed user names, plaintext passwords, and website activity for almost 100,000 of its members, some of whom are employees of Apple, Google, IBM, and other large companies.

The sensitive information was contained in 100 gigabytes worth of website logs that were publicly available for at least a month on servers maintained by the Institute of Electrical and Electronics Engineers, according to a blog post published by a recent graduate and current teaching assistant at the University of Copenhagen.

http://arstechnica.com/security/2012/09/ieee-trade-group-exposes-100000-password-for-google-apple-engineers/
 

Offline bullet308

  • Frequent Contributor
  • **
  • Posts: 341
  • Country: us
  • Jack of All Trades, Master of None Related to EE
Re: Plenty of leaked passwords .. (IEEE, uncrypted)
« Reply #1 on: September 26, 2012, 01:44:29 am »
One would have thought they knew better...guess not.   :-/
>>>BULLET>>>
 

Offline GeoffS

  • Supporter
  • ****
  • Posts: 1267
  • Country: au
Re: Plenty of leaked passwords .. (IEEE, uncrypted)
« Reply #2 on: September 26, 2012, 05:01:56 am »
its about how much attention you get. you draw customers attention, you draw enemy attention, thats how the world works.

I'm sorry, I have no idea how this relates to the thread's topic. ???
 

Offline GeoffS

  • Supporter
  • ****
  • Posts: 1267
  • Country: au
Re: Plenty of leaked passwords .. (IEEE, uncrypted)
« Reply #3 on: September 26, 2012, 05:54:24 am »
plain text: IE has many users, 100 gigabytes of (cookies?) data? sure it wil be fishing ground for many crackers. what do you think?

Did you actually READ the linked article? It makes no mention of IE.
 

Offline Monkeh

  • Super Contributor
  • ***
  • Posts: 6497
  • Country: gb
Re: Plenty of leaked passwords .. (IEEE, uncrypted)
« Reply #4 on: September 26, 2012, 02:55:43 pm »
plain text: IE has many users, 100 gigabytes of (cookies?) data? sure it wil be fishing ground for many crackers. what do you think?

Did you actually READ the linked article? It makes no mention of IE.

He meant IEEE, pretty clearly.
 

Offline Balaur

  • Supporter
  • ****
  • Posts: 525
  • Country: fr
Re: Plenty of leaked passwords .. (IEEE, uncrypted)
« Reply #5 on: September 26, 2012, 03:42:19 pm »
plain text: IE has many users, 100 gigabytes of (cookies?) data? sure it wil be fishing ground for many crackers. what do you think?

Did you actually READ the linked article? It makes no mention of IE.

He meant IEEE, pretty clearly.

Nope, he actually meant IE and his following messages (that were removed in the meantime) were really outside the scope of the discussion.

Yep, I've got a mail this morning from IEEE. As most "Woopsie, this is our fault, so here some lovely sand for your eyes", the message is composed as follows:

- 4 lines to explain the security issue
- 34 lines to explain TO ME how important is to select a strong password, to change it often and not to use the same for several websites and so on ...
- 2 lines for actual excuses

Also, the mail says that "IEEE has terminated access to your account under your current password" and that the following login I have to set up a new password. However, I had no troubles logging to myIEEE and IEEEXplore with my old password (that I've since changed). Go figure!

Cheers,
Dan
« Last Edit: September 26, 2012, 03:46:10 pm by Balaur »
 

Offline saturation

  • Super Contributor
  • ***
  • Posts: 4788
  • Country: us
  • Doveryai, no proveryai
    • NIST
Re: Plenty of leaked passwords .. (IEEE, uncrypted)
« Reply #6 on: September 26, 2012, 03:51:30 pm »
The only value of the passwords is to buy IEEE products.  Its not like passwords for putting missiles into launch mode.  I wouldn't be surprised if an IEEE member did use 123456 because they don't care about their account's contents, assuming they did due diligence to protect their personal information that could be stored in there  ;).

I've been with the IEEE since early 1990s.
Best Wishes,

 Saturation
 

Offline Monkeh

  • Super Contributor
  • ***
  • Posts: 6497
  • Country: gb
Re: Plenty of leaked passwords .. (IEEE, uncrypted)
« Reply #7 on: September 26, 2012, 04:50:56 pm »
plain text: IE has many users, 100 gigabytes of (cookies?) data? sure it wil be fishing ground for many crackers. what do you think?

Did you actually READ the linked article? It makes no mention of IE.

He meant IEEE, pretty clearly.

Nope, he actually meant IE and his following messages (that were removed in the meantime) were really outside the scope of the discussion.

Uh.. huh. Well, some people do have trouble staying on topic. Or even understanding the topic.
 

Offline JoannaK

  • Frequent Contributor
  • **
  • Posts: 337
  • Country: fi
    • Diytao making blog
Re: Plenty of leaked passwords .. (IEEE, uncrypted)
« Reply #8 on: September 26, 2012, 06:54:00 pm »
The only value of the passwords is to buy IEEE products.  Its not like passwords for putting missiles into launch mode.  I wouldn't be surprised if an IEEE member did use 123456 because they don't care about their account's contents, assuming they did due diligence to protect their personal information that could be stored in there  ;).

I've been with the IEEE since early 1990s.

Well.. if someone is so idiot that uses that kind of weak password on any site that has money value, they are obvious and easy targets to on all other sites they are using. And as soon as someone got your apple or google account you'll be in big ****.  With cloud syncing the cracker can erase all info from cloud connected machines.

Real world explanation. Some mistakes he made, but the big ones were by apple and amazon (at his case).
http://www.wired.com/gadgetlab/2012/08/apple-amazon-mat-honan-hacking/


Has happened before, is total pita trying to recover accounts & data ,.
 

Offline GeoffS

  • Supporter
  • ****
  • Posts: 1267
  • Country: au
Re: Plenty of leaked passwords .. (IEEE, uncrypted)
« Reply #9 on: September 26, 2012, 10:01:14 pm »
plain text: IE has many users, 100 gigabytes of (cookies?) data? sure it wil be fishing ground for many crackers. what do you think?

Did you actually READ the linked article? It makes no mention of IE.

He meant IEEE, pretty clearly.

Nope, he actually meant IE and his following messages (that were removed in the meantime) were really outside the scope of the discussion.


The poster must have agreed as he was the one who removed the posts.
I realise that this post is outside the discussion but I'm a moderator, what's the use of having power if you can't abuse it?
 


Share me

Digg  Facebook  SlashDot  Delicious  Technorati  Twitter  Google  Yahoo
Smf