Gawker Hack - *and* - Deviant Art and McDonalds - There is Safety in Open-Source

Hi Folks,

 

I'm imagine that everyone is now too-familiar with Gawker hack...

But just in case, please note that both DeviantArt (email marketing lists, may be used for phishing) and McDonalds (Monopoly?) was also compromised over the weekend!

Gawker Sites include: Lifehacker, Gizmodo, Jezebel, io9, Kotaku, Fleshbot

I've written up a quick list of tools & resources you can use to see if your account(s) (or a client's) was compromised, and a few quick thoughts on why the closed-source nature of the Gawker CMS and the current US economy may be contributing to these sorts of incidents.

http://ow.ly/3pQhM

Tags: Gawker, Hack, Open-Source, Security

Views: 32

Replies to This Discussion

Permalink Reply by Robert Vining on December 19, 2010 at 4:09pm

Thanks for this post Andrew.

I've been guilty of using just a few passwords for several different sites in the past. There's so many sites that require log-ins today, it's easy to be lazy.

 

Someone recommended KeePass to me about a year ago, and it sure makes it easier to keep up with all the different passwords in my life.

 

http://keepass.info/

Permalink Reply by Andrew J Holden on December 20, 2010 at 11:03am

Thanks Robert,

 

Same here.  It's funny how some of the core features of the internet (passwords, email) still require so much thought and coordination.

One of the things I plan to look into some point is OpenID and Joomla!  If there's not some work being done there already, maybe we can contribute a bit of code.  It would probably be a good idea to come up with some sort of (AJAX?) common-password-checker as well....

Nice open-source project @ KeepPass, going to try it out next week..

 

Thanks!

 

Robert Vining said:

Thanks for this post Andrew.

I've been guilty of using just a few passwords for several different sites in the past. There's so many sites that require log-ins today, it's easy to be lazy.

 

Someone recommended KeePass to me about a year ago, and it sure makes it easier to keep up with all the different passwords in my life.

 

http://keepass.info/

Permalink Reply by Robert Vining on December 21, 2010 at 12:21pm

Open ID has been in Joomla 1.5 since it was released 3 years ago from what I remember...

 

Never used it myself. Don't even know if it's functional. I think I remember a discussion in the bug squad that they were thinking of removing it for 1.6 because it wasn't used/maintained. Not sure.

Permalink Reply by Andrew J Holden on December 21, 2010 at 2:25pm

Interesting, I'll have to take a look into it more...

Robert Vining said:

Open ID has been in Joomla 1.5 since it was released 3 years ago from what I remember...

 

Never used it myself. Don't even know if it's functional. I think I remember a discussion in the bug squad that they were thinking of removing it for 1.6 because it wasn't used/maintained. Not sure.

RSS

Badge

Loading…

Get Badge

© 2012   Created by Amy Stephen.

Badges  |  Report an Issue  |  Terms of Service

Sign in to chat!