Well-known
programmer website CSDN, the country's membership database many websites have
spread the news of theft, including Mop, 17173, multi-play networks, all
networks, toot cattle, 7k7k, 178 games net.
"IT Times" reporter December 22, exclusive access to a database file member of multi-play networks, involving members of more than 8 million. Reporters randomly selected 10 users, using the database password, user account the results of half log smooth.
Meanwhile Reporters also received a picture file, the file appears multi-play networks, all networks, toot cattle, 7k7k, 178 gaming network, CSDN site database file and a number of screenshots, user data related to the total amount of more than 50 million .
6 million CSDN user password theft
December 21, have friends in the online user CSDN open the database and available for download. It is reported that the database involves more than 600 million users, involving the user's account, password and registered mail and other information.
CSDN website then published an official announcement said is true regarding the recognition of a database of stolen, apologize to the users.
The notice said the stolen database system in 2009 CSDN used as a backup, and now, reveal the reasons for not yet been identified.
CSDN currently has public security organs, public security authorities are also investigating clues, CSDN said the existing 20 million registered users account password database have all been taken to protect and backup ciphertext.
Reportedly a number of sites the user data leakage
21 evening, the reporter sent over the network received happy mail alert if the user name and password CSDN consistent, then change the password as soon as possible.
22 am, there are users that, Mop, 17173, multi-play networks, all networks, toot cattle, 7k7k, 178 gaming network and a number of sites have been stolen membership database and published on the network Download . But after a reporter trying to find these addresses have failed can not be used.
At 22 pm, a "master of the industry" to the reporters came in hacker circles the popular multi-play networks membership database, a random sample of two reporter user name and password, and other websites in order to log in more than 10, found that in many cases can log in normally. In other words, the users with a user name and password registered at multiple sites, in addition to multi-play networks, other sites are all on the disclosure of the password.
Reporter's notes
Web site owners, please truss "fence"
After the event, CSDN attitude good, but the adverse impact has been irretrievably lost, and in addition, more companies focus on the outbreak of a similar thing, leaving reporters concerns.
While it has been since the media and security vendors are urged to pay attention to protect their user account security, but the user account password big leak, but simply because the result of irresponsible manufacturers. According to CSDN say, just a programmer's mistake. The reason for the disclosure of other sites, whether it is CSDN caused a chain reaction, not yet known. But at least from the current view of the fact, in the user database protection, the manufacturers of the security measures it is too weak.
Can not provide security to the user, how to give users the confidence to use your site services?
And for those of us ordinary users, in addition to the password change CSDN related, if other sites use the same password, then rush to change the password on those sites. When the password is set, the use of uppercase and lowercase letters in the form of more secure some of the mix, try not to use the same mailbox, the same site registration different network services, especially some of the importance of the site.
"IT Times" reporter December 22, exclusive access to a database file member of multi-play networks, involving members of more than 8 million. Reporters randomly selected 10 users, using the database password, user account the results of half log smooth.
Meanwhile Reporters also received a picture file, the file appears multi-play networks, all networks, toot cattle, 7k7k, 178 gaming network, CSDN site database file and a number of screenshots, user data related to the total amount of more than 50 million .
6 million CSDN user password theft
December 21, have friends in the online user CSDN open the database and available for download. It is reported that the database involves more than 600 million users, involving the user's account, password and registered mail and other information.
CSDN website then published an official announcement said is true regarding the recognition of a database of stolen, apologize to the users.
The notice said the stolen database system in 2009 CSDN used as a backup, and now, reveal the reasons for not yet been identified.
CSDN currently has public security organs, public security authorities are also investigating clues, CSDN said the existing 20 million registered users account password database have all been taken to protect and backup ciphertext.
Reportedly a number of sites the user data leakage
21 evening, the reporter sent over the network received happy mail alert if the user name and password CSDN consistent, then change the password as soon as possible.
22 am, there are users that, Mop, 17173, multi-play networks, all networks, toot cattle, 7k7k, 178 gaming network and a number of sites have been stolen membership database and published on the network Download . But after a reporter trying to find these addresses have failed can not be used.
At 22 pm, a "master of the industry" to the reporters came in hacker circles the popular multi-play networks membership database, a random sample of two reporter user name and password, and other websites in order to log in more than 10, found that in many cases can log in normally. In other words, the users with a user name and password registered at multiple sites, in addition to multi-play networks, other sites are all on the disclosure of the password.
Reporter's notes
Web site owners, please truss "fence"
After the event, CSDN attitude good, but the adverse impact has been irretrievably lost, and in addition, more companies focus on the outbreak of a similar thing, leaving reporters concerns.
While it has been since the media and security vendors are urged to pay attention to protect their user account security, but the user account password big leak, but simply because the result of irresponsible manufacturers. According to CSDN say, just a programmer's mistake. The reason for the disclosure of other sites, whether it is CSDN caused a chain reaction, not yet known. But at least from the current view of the fact, in the user database protection, the manufacturers of the security measures it is too weak.
Can not provide security to the user, how to give users the confidence to use your site services?
And for those of us ordinary users, in addition to the password change CSDN related, if other sites use the same password, then rush to change the password on those sites. When the password is set, the use of uppercase and lowercase letters in the form of more secure some of the mix, try not to use the same mailbox, the same site registration different network services, especially some of the importance of the site.
没有评论:
发表评论