Gawker hacked, change your passwords

AlertSign Gawker hacked, change your passwordsWell it had to happen to someone sometime. Gawker, the company that owns Gizmodo and other sites, has been hacked and 1.3 million accounts have been released as a torrent file on the Internet. That means that if you ever registered with any of their sites, your email and possibly password might be accessible to anyone. The group behind the attack, calling themselves Gnosis, have stated that “We went after Gawker because of their outright arrogance”. While many would agree with that statement, it’s hardly a reason to let 1.3 million users suffer.

Either way, the bottom line is still the same: if you have an account with Gawker, you should change your password on sites that use the same password or variations of it. Not a simple task for some, for sure. However, it’s not necessarily that grim. It appears as if the majority of accounts have either not had their password cracked or this has been blanked out prior to the release, stating the password as “NULL”. However the exception is a document called “dumb passwords” which list the full email and password of people with stupid passwords  like “password” or “qwerty”. So if you know you have a password that would require at least half a brain to come up with you’re probably safe, and if not then you already have major security issues.

[Forbes]




5 Comments

brian t on December 13, 2010 11:24 AM

The logical explanation is that they used a dictionary attack on the hashed passwords – so only dumb passwords could be decoded directly.

See the Slashdot article for instructions on how to check whether you’ve been affected: you can get the MD5 hash (signature) of your email address via a web page, then search for it in an online database derived from the stolen data.

Andrew DeFaria on December 13, 2010 1:59 PM

In a word – lastpass

peaceful1 on December 13, 2010 2:18 PM

does this means I have to change my account & email password?!

NeonFangs on December 13, 2010 8:34 PM

Luckily i always use dummy credentials when registering on public website. Can’t believe Gawker being so careless.

Jprone on December 18, 2010 7:33 AM

Gawker is clearly ran by a bunch of imbeciles.

Comments Closed. Please continue the discussion in the forums