• Was I caught in the data breach?

    Author
    Topic
    #2404752

    Today Firefox Monitor warned me about a data breach at Gravatar with a hack perpetrated 3 October 2020:

    https://monitor.firefox.com/breach-details/Gravatar

    Allegedly no passwords were stolen, only email addresses were compromised.
    Still, security, you know …

    As luck would have it, since the breach I’ve changed my possibly compromised respective password multiple times. It’s a trivial effort to appease my paranoia.


    [2022-02] Corsair One i300, 64 GB RAM, RTX 3080 Ti, Samsung 1800R 48" 3840x1080, 1 2TB M2 SSD, 1 1TB SATA SSD, 1 5TB USB3 HDD.

    [2015-02] Clevo P17SM-A, 32GB RAM, GTX 970M, ext LG 27" 1920x1080,
    500 GB SSD, 1TB SATA HDD, 4 5TB USB3.0 HDD's, 4 2TB USB3.0 HDD's,
    1 3TB USB3.0 HDD, 1 1TB eSATA HDD.

    Viewing 2 reply threads
    Author
    Replies
    • #2404754

      Dec.6.2021
      As a result of the vulnerability, “167 million names, usernames and MD5 hashes of email addresses used to reference users’ avatars were subsequently scraped and distributed within the hacking community,” HaveIBeenPwned said.
      Of the MD5 hashes, just under 114 million were cracked and distributed alongside the source hash, thus disclosing the original email address and accompanying data.

      https[://]www[.]itnews[.]com[.]au/news/gravatar-profile-add-on-leaks-data-on-millions-of-users-573607

      * get out of the poisoned Metaverse *
      1 user thanked author for this post.
    • #2404770

      Is this still a good way to check? (recommended some time back.. discussed quite often at bleepingcomputer..)

      https://haveibeenpwned.com/

       

      • #2404771

        Is this still a good way to check? (recommended some time back.. discussed quite often at bleepingcomputer..) https://haveibeenpwned.com/

         

        It corroborates with Firefox Monitor.


        [2022-02] Corsair One i300, 64 GB RAM, RTX 3080 Ti, Samsung 1800R 48" 3840x1080, 1 2TB M2 SSD, 1 1TB SATA SSD, 1 5TB USB3 HDD.

        [2015-02] Clevo P17SM-A, 32GB RAM, GTX 970M, ext LG 27" 1920x1080,
        500 GB SSD, 1TB SATA HDD, 4 5TB USB3.0 HDD's, 4 2TB USB3.0 HDD's,
        1 3TB USB3.0 HDD, 1 1TB eSATA HDD.

    • #2404878

      I got the same notice from Firefox Monitor.  I’ve changed my Gravatar password and my WordPress password.  As for the email address, it’s available from my “Contact Me” link at my website, so it’s been out there for years.

      Create a fresh drive image before making system changes/Windows updates, in case you need to start over!
      We all have our own reasons for doing the things that we do. We don't all have to do the same things.

    Viewing 2 reply threads
    Reply To: Reply #2404754 in Was I caught in the data breach?

    You can use BBCodes to format your content.
    Your account can't use all available BBCodes, they will be stripped before saving.

    Cancel