New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Comments
Scary stuff... I wasn't on the list but I'm wondering if that site is even trust worthy to put my email address in the first place
Afraid they'll send you an email?
can we get a lol button next to thanks
Edit: removed. I think I found it myself.
Not afraid but sounds fishy especially why would you try to verify your address on a site which does not belong to google?
Have Google even made a formal response yet?
Not sure but I don't think it's likely to happen.
Was it just gmail or was google apps compromised also?
Because Google is never going to tell you what password is in that leak. By providing this interface it allows people to cross reference the leak without downloading a list of people's passwords. The data is out there, this is an easy way to check it quickly. The worst they can do is sell your email address, and quite frankly the value of that sale has dropped, as there are more than enough ways to scrape the Internet for email addresses.
So wait... where are the passwords? I want to see if they have the correct password for one of my email accounts.
It looks like just @gmail.com addresses. I downloaded the file to grep for domains I have with google apps and none of them are there.
Thank goodness my email is not there. How do we secure our gmail accounts?
Google Apps data is stored in a different area. Google has government, education, health, etc. contracts with Google Apps - they wouldn't keep that data with Gmail.
Me too. There's an account there I haven't used in 3-4 years with an old password. I'm starting to wonder if this is a leak of Gmail passwords, or an aggregation of forum usernames and passwords from another source.
EDIT: Google did tell the media that: "We have no evidence that our systems have been compromised, but whenever we become aware that accounts may have been, we take steps to help those users secure their accounts."
Starting to think that Google was not hacked.
I don't think they stole it directly from gmail / google. Might be stolen from phishing or some database dumps.
I doubt it's a real leak. If it was real, Gmail wouldn't have kept quiet and would've sent out an email already alerting users to change their password and such.
Yes! Account [email protected] is found! First two symbols of password is: ga. Immediately change your password!
Yeah, this is pretty fake. Since I'm not an idiot, and didn't use any of my passwords on any fishy websites; none of my 200+ GMail accounts were found in this dump. Thus proving pretty easily that this dump didn't come from GMail's servers, but from random phishing websites and hacked forum databases, shifty public services, etc.
wow .. what do you use 200 accounts for? :P
One for every other day of the year?
I use one account and I barely have time to go through it ...
Well, since each GMail account can fetch mail from another 5 GMail accounts, it's pretty easy to set up a chain to be able to use them all as mailboxes. As well, since with GMail you can have any number of periods (albino.geek, alb.ino.geek, albinogeek a.lbinog.eek, etc.) in your names to have alternative E-Mails that all deliver; it's great.
The funny part is, they put Google Adsense on a page that is showing leaked account.
I'm pretty darn sure that you are correct. My account was compromised somewhere around the range of 2004-2006. That is the password in this leak. My account was compromised, used to send spam, and that password was never used again.
Edit: Correction. It was 2010, confirmed. My memory isn't what it used to be. Still, that's a lifetime ago to me.
Haha! Hilarious how you stated that so 'as a matter of fact'-ly
At least you were able to catch it early.