sixwheeledbeast Posted May 16, 2020 Share Posted May 16, 2020 Concerning thing here is the way this data is structured with interactions between people as well as private information like job titles and phone numbers. https://www.troyhunt.com/the-unattributable-db8151dd-data-breach/ Link to comment https://www.thesecurityinstaller.co.uk/community/topic/43822-22-million-records-exposed-in-mystery-db8151dd-breach/ Share on other sites More sharing options...
james.wilson Posted May 16, 2020 Share Posted May 16, 2020 Bloody hell securitywarehouse Security Supplies from Security Warehouse Trade Members please contact us for your TSI vetted trade discount. Link to comment https://www.thesecurityinstaller.co.uk/community/topic/43822-22-million-records-exposed-in-mystery-db8151dd-breach/#findComment-501127 Share on other sites More sharing options...
sixwheeledbeast Posted May 16, 2020 Author Share Posted May 16, 2020 Indeed, the source is still TBD too. I would say that UUID on the data will make it traceable to somewhere, it may transpire where and how it got leaked in the near future. Link to comment https://www.thesecurityinstaller.co.uk/community/topic/43822-22-million-records-exposed-in-mystery-db8151dd-breach/#findComment-501128 Share on other sites More sharing options...
datadiffusion Posted May 16, 2020 Share Posted May 16, 2020 (edited) The suggestion was that the data was related to linkedin as people could only find their 'special' linkedin email in the breach. I do the same - linkedin@domain.com as I do for everything e.g. securitywarehouse@domain.co.uk which means compromise on one only hands over the keys to all if the passwords are the same (sometimes they are, sometimes not) and a switched on human spots that they need to substitute the recipient part of the email - and it is not always as plain and obvious. My paypal login for example, is NOT paypal@domain.com. I've tried on the 'Have I Been Pwned' site and cannot find anything for any of my domains let alone the linkedin one In fact, searching my surname suprisingly only brings up a single result I know isn't me as it relates to a single ancient exploit of a forum on a weed smoking enthusiasts site! Edited May 16, 2020 by datadiffusion Forgot this was public, domain redacted So, I've decided to take my work back underground.... to stop it falling into the wrong hands Link to comment https://www.thesecurityinstaller.co.uk/community/topic/43822-22-million-records-exposed-in-mystery-db8151dd-breach/#findComment-501129 Share on other sites More sharing options...
sixwheeledbeast Posted May 16, 2020 Author Share Posted May 16, 2020 I feel it's source is from some social platform like that or something like a calender app that links all these together e-mail, meetings with contact details etc. Even having separate email usernames only narrows it down so far. Don't think it's right to speculate TBH you can cause an unnecessary panic, people that are around these breaches have been trying to find the source for several months now, it's taken that long to add it all on to HIBP. The one piece of information to take away from these breaches is don't re-use passwords. Link to comment https://www.thesecurityinstaller.co.uk/community/topic/43822-22-million-records-exposed-in-mystery-db8151dd-breach/#findComment-501132 Share on other sites More sharing options...
MrHappy Posted May 16, 2020 Share Posted May 16, 2020 All my passwords are M1ngeM@ster69 Mr Veritas God Link to comment https://www.thesecurityinstaller.co.uk/community/topic/43822-22-million-records-exposed-in-mystery-db8151dd-breach/#findComment-501139 Share on other sites More sharing options...
sixwheeledbeast Posted May 16, 2020 Author Share Posted May 16, 2020 10 minutes ago, MrHappy said: All my passwords are M1ngeM@ster69 Link to comment https://www.thesecurityinstaller.co.uk/community/topic/43822-22-million-records-exposed-in-mystery-db8151dd-breach/#findComment-501141 Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now