News, tips, advice, support for Windows, Office, PCs & more
Home icon Home icon

We're community supported and proud of it!

  • Was I caught in the data breach?

    Home » Forums » AskWoody support » Cyber Security » Cyber Security for Home Users » Was I caught in the data breach?

    Author
    Topic
    #2404752

    Today Firefox Monitor warned me about a data breach at Gravatar with a hack perpetrated 3 October 2020:

    https://monitor.firefox.com/breach-details/Gravatar

    Allegedly no passwords were stolen, only email addresses were compromised.
    Still, security, you know …

    As luck would have it, since the breach I’ve changed my possibly compromised respective password multiple times. It’s a trivial effort to appease my paranoia.


    Viewing 2 reply threads
    Author
    Replies
    • #2404754

      Dec.6.2021
      As a result of the vulnerability, “167 million names, usernames and MD5 hashes of email addresses used to reference users’ avatars were subsequently scraped and distributed within the hacking community,” HaveIBeenPwned said.
      Of the MD5 hashes, just under 114 million were cracked and distributed alongside the source hash, thus disclosing the original email address and accompanying data.

      https[://]www[.]itnews[.]com[.]au/news/gravatar-profile-add-on-leaks-data-on-millions-of-users-573607

      ~
      1 user thanked author for this post.
    • #2404770

      Is this still a good way to check? (recommended some time back.. discussed quite often at bleepingcomputer..)

      https://haveibeenpwned.com/

       

    • #2404878

      I got the same notice from Firefox Monitor.  I’ve changed my Gravatar password and my WordPress password.  As for the email address, it’s available from my “Contact Me” link at my website, so it’s been out there for years.

      Create a fresh drive image before making system changes/Windows updates, in case you need to start over!
      We all have our own reasons for doing the things that we do. We don't all have to do the same things.

    Viewing 2 reply threads
    Reply To: Was I caught in the data breach?

    You can use BBCodes to format your content.
    Your account can't use all available BBCodes, they will be stripped before saving.