Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: Gawker Media Breach of Security SANS ISC InfoSec Forums

Participate: Learn more about our honeypot network
https://isc.sans.edu/honeypot.html

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Gawker Media Breach of Security

We were notified by a reader today of a Breach of Security at Gawker Media.   Gawker Media sites include Lifehacker, Gizmodo, Gawker, Jezebel, io9, Jalopnik, Kotaku, Deadspin, and Fleshbot.

If you are a Gawker Media user you will want to take a look at the information provided at http://lifehacker.com/5712785/.

Deb Hale Long Lines, LLC

Deborah

278 Posts
ISC Handler
Someone has posted a CSV on Google of the email domains and hashed email addresses at http://www.google.com/fusiontables/DataSource?dsrcid=350662 . They have instructions to MD5 your own email address and to search the file for them so you can tell if you're among the released compromised accounts. Of course, you could be compromised but not released…
Anonymous
Don;t just change your password *there*.. Change your passwords EVERYWHERE that you use the same usersname and/or password.
ISC handlers know better, but so many of us out here in User-Land (even experienced ones) re-use passwords and/or useernames. *Blush*
They now have the User/Pass to some of the *OTHER* sites you use.
Now please excuse me while i go, umm, "change" a few things...
Anonymous
Crap. I better go change my Fleshbot--I mean Gawker and io9 passwords.
Jasey

93 Posts
I got a copy of the files from The Pirate Bay last night. I figured I'd look to see if I was in the mess. I wasn't in the parsed_db.txt, but was in the full_db.txt.

Password they had hashed for me was from before November 8th 2010. I changed my password that day, because I had lost it.
Anonymous
What roseman said. Ahem...
Anonymous

Sign Up for Free or Log In to start participating in the conversation!