Sunday, 19 August, 2018

Reddit hack exposes private messages and user identities

Reddit security breach News Image Source Sharaf Maksumov Shutterstock
Kayla Schwartz | 03 August, 2018, 11:42

Reddit said the hacker also accessed more recent logs containing email digests sent between June 3 and June 17, 2018. Given that communities like Reddit rely on anonymity, finding out that your username and password has been matched up by hackers is not what people want to hear.

The hackers in question unearthed not just usernames but corresponding email addresses, meaning it's very possible to link site activity to real identities.

Reddit says the attacker could only access and read some of its systems that contained backup data and source code.

According to the Reddit announcement about the security incident, the attacker was able to gain access to a complete backup copy of a user database dating from 2005 to 2007.

Social media network Reddit said on Wednesday a hacker broke into a few of its systems and accessed some user data, including current email addresses and a 2007 database backup containing old encrypted passwords. Although the breach was described as being "serious", it was mainly limited to data, including emails and scrambled passwords, prior to 2007. The digests connect a username to the associated email address and contain suggested posts from select popular and safe-for-work subreddits you subscribe to.

Additionally, the site said the alleged hacker also compromised a few of its employees' accounts with its cloud and source code hosting providers.

Reddit says "a few" staff members had their accounts compromised, adding: "We learned that SMS-based authentication is not almost as secure as we would hope".

Ontario is axing its test of universal basic income
Ontario's previous government implemented the pilot program last July, estimating that it would cost about CA$150 million. The New Democrats and the Liberals also suggested the governing Tories would erode supports for low-income residents.

Reddit employees use something called two-factor authentication on their accounts.

"The most common technique is most likely use of smartphone malware which automates the process of stealing passwords and obtaining verification codes while obfuscating the activity from the end-user but this seems less likely in such a targeted campaign", he added. It is unclear if they have identified the actor behind the attack. The company also included instructions for users to remove their Reddit data. The company said that since the intrusion it has bolstered its monitoring systems and has reported the breach to law enforcement, which is investigating.

"A cybercriminal only needs to get their hands on one password to potentially gain access to private and even financial information across a number of accounts and apps".

For users whose account credentials were compromised, Reddit will force a password reset.

For those thinking that deleting their Reddit account may assist them, Small said the cat is out of the bag. The bad news? It involved a two-factor authentication scam. "We understand it's hard to remember all your passwords but there are tools such as password generators and managers that can help solve this problem and ensure you don't become vulnerable to today's digitally advanced criminals".

'If you signed up for Reddit after 2007, you're clear here, ' he wrote.

Recommended

German firms now HIT by Trump's tariffs on £200BN of China goods German firms now HIT by Trump's tariffs on £200BN of China goods FILE PHOTO: Shipping containers, including one labelled "China Shipping", are stacked at the Paul W. Mr Trump has threated to slap tariffs on virtually all of China's exports to the United States.

GOP pundit CALLS OUT left-wingers who rage at Trump supporters GOP pundit CALLS OUT left-wingers who rage at Trump supporters CNN has always been Trump's media bullseye, and he has refused to take questions from the news network, dubbing it " fake news ". Instead, Sanders recited a litany of complaints against the press and blamed the media for inflaming tensions in the country.

ESPN's Paul Finebaum on what's next for Urban Meyer ESPN's Paul Finebaum on what's next for Urban Meyer In October 2015, Powell (Ohio) police investigated Zach Smith for domestic violence against Courtney , from whom he was separated. What is Shelley Meyer's role? Shelley never followed up with Courtney about whether or not she took the information to Urban.

Two cases of West Nile virus reported in Johnson County Two cases of West Nile virus reported in Johnson County Health Director Dennis Johnson said no mosquito has tested positive in town this year and only one tested positive last year. Knowing which kinds of mosquitoes are active in our state is critical for our disease prevention strategies.

Viral video of Paris woman assaulted after confronting sexual harassment triggers investigation Viral video of Paris woman assaulted after confronting sexual harassment triggers investigation The horrifying attack on Marie Laguerre , 22, was captured on video and has caused national anger and soul searching. A woman was attacked on a street in Paris after she stood up to a man who had been sexually harassing her.

John Kelly expected to stay through 2020 John Kelly expected to stay through 2020 The Washington Post reports that both men were in the room and "listened quietly" when Kelly made his announcement. Kelly was Homeland Security chief when Trump named him to succeed Reince Priebus a year ago after he resigned.

Federal judge blocks release of plans for 3D-printed guns Federal judge blocks release of plans for 3D-printed guns Democrats in the House and Senate also filed legislation that would in effect ban guns constructed from 3-D printed material. The blueprints for 3D printed guns have been available online for years now, mostly in the deep recesses of the dark web.

Trump's call to end Mueller probe reignites obstruction question Trump's call to end Mueller probe reignites obstruction question Senator Susan Collins said it "was entirely inappropriate and intemperate" for Trump to make such a request of Sessions. On the other hand, Trump has a right to express his opinion, and he uses Twitter to do so, Giuliani said.

Oil prices mixed; Brent eases as trade tensions weigh Oil prices mixed; Brent eases as trade tensions weigh Later in the week, the API and the EIA will report on United States crude oil stockpiles on Tuesday and Wednesday, respectively. Output is now 2.8 million barrels per day, its oil minister said, an increase of 100,000 bpd from June's average.

Bryson DeChambeau Apologises But ''Classless'' Behaviour Hints At A Spicy Ryder Cup Bryson DeChambeau Apologises But ''Classless'' Behaviour Hints At A Spicy Ryder Cup Ryder Cup hopeful Paul Casey was three shots off the lead at nine under par after a third successive round of 69. Not that I haven't been but I just needed to that little bit more and it's just come up proper trumps.

Force India sale plans compromised by rival teams Force India sale plans compromised by rival teams Mercedes team chief Toto Woff said that there are almost five interested parties who wish to and can take over the team.

Chipotle Mexican Grill rides out another food-related illness scare Chipotle Mexican Grill rides out another food-related illness scare In early morning trading, Chipotle's stock hovered around $436 a share, down about 6 percent from Monday's closing price. The logo of Chipotle Mexican Grill is seen at the Chipotle Next Kitchen in Manhattan, New York, U.S., June 28, 2018.

China warns against blackmail as Donald Trump considers higher tariffs Global stocks took a tumble on Wednesday as news spread about U.S. plans for steeper tariffs. "This won't work on China", Geng said.

White House: Trump receives new letter from Kim Jong Un White House: Trump receives new letter from Kim Jong Un President Donald Trump received a new letter from North Korean leader Kim Jong Un following up on their Singapore summit. The U.S. military flew the remains from Osan Air Base in South Korea after they had undergone an initial review.

Root run out sparks England collapse amid controversial Kohli send-off Root run out sparks England collapse amid controversial Kohli send-off It was the 11th time that Root had made a Test fifty since that Edgbaston hundred previous year without going on to three figures. However, Kohli has since then turned the tide to become one of the most consistent performers across the formats.