Reddit Hacked - Emails, Private Messages, Passwords Stolen

03 August, 2018, 11:43 | Author: Leah Owens
  • Reddit discloses ‘serious’ security breach it discovered on June 19th

Access was gained via SMS intercept to bypass the two-factor authentication system.

Between June 3 and 17, a set of data which included logs and databases linked to daily email digests it sends out to users was accessed, it said. Reddit will be resetting the passwords of affected users.

The fact the attackers also gained access to some Reddit source code nearly feels like a small loss even though that is anything but the case. That includes the content of the emails themselves, user email addresses, and the account associated with that email address. Together, these details could.

Reddit was hacked back in June, with the attacker gaining access to user data including some current email addresses and encrypted passwords that were in use prior to 2007.

To be clear, the breach didn't occur in 2007.

According to the Reddit announcement about the security incident, the attacker was able to gain access to a complete backup copy of a user database dating from 2005 to 2007.

Reddit will reset the passwords of those whose accounts were exposed to the data breach.

CNN’s Jim Acosta Spars With Sarah Sanders Over Trump’s Media Attacks
I have some sensitivity around why people have concerns and gripe, especially when they sort of feel targeted. Trump made waves in February 2017 with the "enemy" tweet. "She correctly said no", Trump posted on Twitter .

Virat Kohli dedicates his Test century to wife Anushka Sharma
Kohli also farmed the strike brilliantly during a tenth-wicket stand of 57 with Yadav, who faced 16 balls for his unbeaten one. At Edgbaston , only Kohli (53 not out) stood among the ruins, benefitting from a dropped catch at second slip when on 21.

Ohio State's Urban Meyer put on leave, investigation opened
She offered further details on the abuse and answered questions about what others around the Ohio State program knew. Courtney Smith has alleged her husband abused in her two separate instances, once in 2009 and again in 2015.

"Reddit needs to raise the priority on implementing the model of least privilege and privileged access security controls as this breach demonstrates that the accounts compromised had read access to storage systems including source code, logs and configurations".

But the incident has shattered its belief that two-factor authentication is a safe way to secure accounts.

Robert Siciliano, security analyst at online security company Hotspot Shield, said the breach can have serious far-reaching consequences.

Logs containing the email digests we sent between June 3 and June 17, 2018. "Although it's hard to crack those passwords, once cracked, the chances are much greater that they will also be added to a dictionary in a future "credential stuffing attack".

Reddit's post says that if you didn't have an email associated with your Reddit account and you didn't have the email digests feature checked in your account's settings, then this particular leak shouldn't impact you. "Whether or not Reddit prompts you to change your password, think about whether you still use the password you used on Reddit 11 years ago on any other sites today", Reddit said. In what one can only assume is a PR move, Reddit is refusing to publicly reveal the extent of the data breach.

Reddit explained that the main attack was executed via an SMS intercept. The company said that since the intrusion it has bolstered its monitoring systems and has reported the breach to law enforcement, which is investigating.

Keith Graham, chief technology officer at SecureAuth + Core Security, said the news demonstrates that "organizations need to go further than just two-factor authentication, utilizing identity platforms that join silos of data together to create comprehensive identity controls".

Recommended:



Popular

University of Texas' Tom Herman speaks on Ohio State's Urban Meyer situation
Ryan Day, who has been the team's offensive coordinator, will be acting head football coach while Meyer is on leave. She also told McMurphy that Shelley said she would have to tell Urban and Courtney encouraged her to do so.

National Archives Says Kavanaugh Doc Request Could Go On Through October
Instead, the GOP has only requested documents from his time in the White House counsel's office from 2001 to 2003. This could potentially thwart Republican hopes for quick confirmation before the November election.

Facebook Uncovers Fake Accounts Ahead of Midterm Elections
We disabled the event earlier today and have reached out to the admins of the five other Pages to update them on what happened. According to Facebook, the pages ran roughly 150 ads on the social media sites at the cost of approximately $11,000.

Kourtney Kardashian Slams Sister Kim Kardashian, Calls Her An ‘Evil Human Being’
I don't care for it personally ". "You don't say things like that", Kourt says through her tears. Keeping Up With The Kardashians season 15 premieres August 5 at 9 p.m. on E!

Merc, Lamborghinis crushed in anti-graft drive in Philippines
Before his appointment, the government would sell the illegally imported vehicles for profit. But there's no denying his public commitment to the Philippine drug war. "He is not.

FDA Issues Warning About 'Vaginal Rejuvenation' Devices
But the safety and effectiveness of these devices hasn't been evaluated or confirmed by the FDA for 'vaginal rejuvenation'. Alma Lasers, BTL Aesthetics, BTL Industries, Cynosure, InMode, Sciton, and Thermigen have all been contacted already.

Manchester United 2-1 Real Madrid
Man Utd will face Bayern Munich in Germany on Sunday in their final game of what has been a miserable pre-season for the club. They open the 2018/19 Premier League season with a home fixture against Leicester City on August 10.

Google reportedly plans to release a censored search app in China
Google's main search platform has been blocked in China since 2010, but it has been attempting to make new inroads into China. Facebook's website is also banned in China but the company has also signalled its interest to enter the market.

Former Rebel traded from Twins to Yankees
Rijo. 19, had a 2.77 ERA and a 4-1 record in seven minor league appearances this season. The 31-year-old Lynn is 7-8 with a 5.10 ERA thus far this year.

Smokefree Public Housing Policy Going Into Effect Tuesday
The Housing and Urban Development website's guide for local housing authorities includes strict procedures. People who live in Decatur have had more than a year to prepare for the soon-to-be change.