Last Updated: 2012-11-15 04:03:00 UTC
by Jim Clausing (Version: 1)
Adobe has revealed that apparently a password database from connectusers.com was compromised via a SQL injection attack. Ars Technica reports that the passwords were hashed using MD5 (not clear whether they were salted or not). Do we really need to remind you what constitutes a strong password and not to reuse them?
Some previous password diaries that might be of interest:
Password Rules: Change them every 25 years (or when you know the target has been compromised)
Jim Clausing, GIAC GSE #26
jclausing --at-- isc [dot] sans (dot) edu