Use Facebook Apps? Time for a Password Change

By Roger on December 28, 2009 1:45 PM | No Comments | No TrackBacks

RockYou was hacked a couple of weeks ago and over 35 million passwords were stolen. RockYou may have your password if you've played any of their Social Networking Applications on sites like Facebook or MySpace. Their applications include

  • Slideshow
  • Uploadphoto
  • Photofx
  • Glittertext
  • Funnotes
  • Countdown
  • Superhug
  • Myspace layouts
  • Stickers
  • Superwall
  • Pieces of flair
  • Speedracing
  • Likeness
  • Hugme
  • Birthday cards

Pieces of flair seems like one I've seen my friends using. Depending on the application, RockYou may have had your Facebook or Webmail password. RockYou recommends that you change passwords for any online service where you've used the same password disclosed to them.

In the last day, I've seen a massive spike in the number of friends who have had their Gmail account hacked and spam sent to contacts in the address book. Its not necessarily connected to the RockYou attack, but its worth mentioning. The hacker briefly posted the full database online for anyone to download. So its not surprising that people would get hit.

Categories:

Tags:

No TrackBacks

TrackBack URL: http://www.infosecblog.org/mt-tb20071121.pl/966

Leave a comment

Categories

Archives

Please contact me by leaving a comment where appropriate. Otherwise, you can click here to reveal an email address for me.
Follow me on Twitter
Got Backups? Get Safe Online Remember Rick Rescorla
Powered by Movable Type 4.34-en

Search

About this Entry

This page contains a single entry by Roger published on December 28, 2009 1:45 PM.

Do you have backups? was the previous entry in this blog.

AdobeARM.exe is the next entry in this blog.

Find recent content on the main index or look in the archives to find all content.