I checked HIBP to see if I was in the Data Breach, and lo and behold I was indeed on that list. My only breach too. I guess I need to change all my damn passwords then...
I checked HIBP to see if I was in the Data Breach, and lo and behold I was indeed on that list. My only breach too. I guess I need to change all my damn passwords then...
(Note for those unfamiliar: HIBP = have I been pwned, which is a website that tracks and notifies people of password data breaches https://haveibeenpwned.com/)
(Note for those unfamiliar: HIBP = have I been pwned, which is a website that tracks and notifies people of password data breaches https://haveibeenpwned.com/)
You only need to change the password you used on the internet archive. And even that imo is optional, they stored the passwords securely so unless you're particularly important or your password is...
You only need to change the password you used on the internet archive. And even that imo is optional, they stored the passwords securely so unless you're particularly important or your password is particularly poor, they won't be able to figure it out.
Many years ago I used to be "one of those people" who used the same 1 - 2 passwords for everything. Then I got an email like the one described, I even think from the same organization. I put the...
Many years ago I used to be "one of those people" who used the same 1 - 2 passwords for everything.
Then I got an email like the one described, I even think from the same organization.
I put the work in, looked up every account I could remember. Luckily I kept my old "Welcome to Zort" emails from various sites. I finally broke down and started using a password manager. I gave each and every account a unique and randomly generated password.
If you believe statements from Bit-Warden even they can't read your data. I'm inclined to believe it as I lost my master password and had to abandon my first account with them.
If you believe statements from Bit-Warden even they can't read your data.
I'm inclined to believe it as I lost my master password and had to abandon my first account with them.
I'll second Bitwarden. Works great and open source if that's important to you. It will generate complex passwords if you want (most password managers will) but I create complex, easier to remember...
I'll second Bitwarden. Works great and open source if that's important to you. It will generate complex passwords if you want (most password managers will) but I create complex, easier to remember passwords for stuff like my online banking. Obligatory XKCD carton for whenever this comes up.
To everyone in this subthread: also use two factor authentication wherever you can, and use it with a key app ( in case you might change your phone number someday ).
To everyone in this subthread: also use two factor authentication wherever you can, and use it with a key app ( in case you might change your phone number someday ).
🤣🤣🤣 I'm in twenty-eight breaches on there with my main email address. I don't even recognize the names of the companies on many of them. But I'm not in this one ¯\_(ツ)_/¯
My only breach too. I guess I need to change all my damn passwords then...
🤣🤣🤣
I'm in twenty-eight breaches on there with my main email address. I don't even recognize the names of the companies on many of them.
In a suspiciously timely way my web host just contacted me with an email saying I need to login to confirm my contact information - which hasn't changed in eons. Once there I get an offer to...
In a suspiciously timely way my web host just contacted me with an email saying I need to login to confirm my contact information - which hasn't changed in eons. Once there I get an offer to "protect my information" by having it stored in an obfuscated away. You know, in case they don't take care of their responsibility to keep their user's information secure and their company servers get breached. Only $15 a year for something they should already be doing and that should be free.
I just got one of those emails this evening.
I checked HIBP to see if I was in the Data Breach, and lo and behold I was indeed on that list. My only breach too. I guess I need to change all my damn passwords then...
(Note for those unfamiliar: HIBP = have I been pwned, which is a website that tracks and notifies people of password data breaches https://haveibeenpwned.com/)
You only need to change the password you used on the internet archive. And even that imo is optional, they stored the passwords securely so unless you're particularly important or your password is particularly poor, they won't be able to figure it out.
Many years ago I used to be "one of those people" who used the same 1 - 2 passwords for everything.
Then I got an email like the one described, I even think from the same organization.
I put the work in, looked up every account I could remember. Luckily I kept my old "Welcome to Zort" emails from various sites. I finally broke down and started using a password manager. I gave each and every account a unique and randomly generated password.
I felt so grateful this evening that I did that.
I would probably use a password manager at one point but does it work locally? I can't quite imagine it being cloud-based
If you believe statements from Bit-Warden even they can't read your data.
I'm inclined to believe it as I lost my master password and had to abandon my first account with them.
I'll second Bitwarden. Works great and open source if that's important to you. It will generate complex passwords if you want (most password managers will) but I create complex, easier to remember passwords for stuff like my online banking. Obligatory XKCD carton for whenever this comes up.
To everyone in this subthread: also use two factor authentication wherever you can, and use it with a key app ( in case you might change your phone number someday ).
KeePass can run entirely from a local file.
🤣🤣🤣
I'm in twenty-eight breaches on there with my main email address. I don't even recognize the names of the companies on many of them.
But I'm not in this one ¯\_(ツ)_/¯
I hope the Internet Archive recovers from the lawsuit first and now this. Losing them would be catastrophic for the web.
In a suspiciously timely way my web host just contacted me with an email saying I need to login to confirm my contact information - which hasn't changed in eons. Once there I get an offer to "protect my information" by having it stored in an obfuscated away. You know, in case they don't take care of their responsibility to keep their user's information secure and their company servers get breached. Only $15 a year for something they should already be doing and that should be free.
Thanks for the heads up. I've been hit. My favorite email, too.
Got pwned too. Atleast it was my old crusty email and not the new one i have