If you can read this, either the style sheet didn't load or you have an older browser that doesn't support style sheets. Try clearing your browser cache and refreshing the page.

(MSNBC)   Forgot your password? Hackers at the Yahoo server have it for you   (msnbc.msn.com) divider line 29
    More: Fail, Yahoo, VoIP, passwords, Yahoo server  
•       •       •

7964 clicks; posted to Main » on 12 Jul 2012 at 9:57 AM (2 years ago)   |  Favorite    |   share:  Share on Twitter share via Email Share on Facebook   more»



29 Comments   (+0 »)
   
View Voting Results: Smartest and Funniest

Archived thread
 
2012-07-12 09:14:27 AM
I have used Yahoo voice in the past. I havent used it since 2010. Thank god that the password I used on Yahoo was my throw-away password (highly weak)
 
2012-07-12 09:23:46 AM
Its usually "password" or "123456". The end.
 
2012-07-12 10:00:44 AM
Yahoo has had consistent problems with JavaScript interface exploits that lets other sites send email "from" Yahoo users when those users have logged in and visit the infected sites.

That, and overall poor security practices.

Problems with Yahoo are not new, and are not going away. Anybody with any brains has switched to Google, or even MSN.
 
2012-07-12 10:03:13 AM
I always make my work computer's password something that would be fun to tell IT security over the phone if I'm ever fired. Favorites include:

- I'm not telling
- You're the genius, figure it out
- YEAH RIGHT
- Why do you need that?
- Go fistfark yourself
 
2012-07-12 10:05:58 AM
verydemotivational.files.wordpress.com
 
2012-07-12 10:09:17 AM
Any hacker that currently has my Yahoo e-mail password, could you please clean out my Inbox of the barrage of junk mail that Yahoo has no idea how to recognize as spam the next time your online? Thank you.

//My throw away e-mail account for sites that will probably spam me, because Yahoo e-mail is the worst of the freebie sites.
 
2012-07-12 10:13:38 AM

pkellmey: Any hacker that currently has my Yahoo e-mail password, could you please clean out my Inbox of the barrage of junk mail that Yahoo has no idea how to recognize as spam the next time your online? Thank you.

//My throw away e-mail account for sites that will probably spam me, because Yahoo e-mail is the worst of the freebie sites.


This.
 
2012-07-12 10:28:01 AM
I wondered what that was all about. I've had Yahooooo! Mail longer than I've had any street address ever
 
2012-07-12 10:30:32 AM
Good! Hopefully someone can delete all the spam I get while they're in there
 
2012-07-12 10:33:08 AM
yahoo never gave a shiat about spam as they have profited off of it over the years, so having your password stolen isn't even a change.
 
2012-07-12 11:48:40 AM
I've been using this for years: KeePass Password Safe. Now you only have to remember one password. There are also Android and IOS apps that support it. Freeware.
 
2012-07-12 12:24:21 PM
Do people even encrypt their password databases anymore?

NutWrench: I've been using this for years: KeePass Password Safe. Now you only have to remember one password. There are also Android and IOS apps that support it. Freeware.


My respect for Murphy's law prevents me from handing off password management to a program. I can't help but believe that you are unbelievably farked if you ever change computers.
 
2012-07-12 01:12:01 PM
As someone who just locked up my account on of the databases I use at work I am getting a kick.

/If I am going to need a password for 5 different things, can we at least decide which characters are allowed and use the same for all five? Or at least tell you what characters are allowed at the login screen!!
//This one requires a letter and number, this one requires numbers only, this one wants a special character, this one can't handle special characters.
///Instead I have to remember 5 different passwords that need to be changed every 3 months. Thanks.

I have a nice system for creating passwords that I can remember, but remembering which variant each site needs is fun.

Bonus: one of the systems is kinda old and I used a special character to lead off the password and I think the software treated it as a command or script and I got a fun error message.
 
2012-07-12 01:16:19 PM
Any website developer that stores passwords as anything other than a hash or encrypted should be banned forever from developing web sites. In fact, even encrypting better have a good reason (and clear-text should be an immediate ban and mark of shame) -- There's no reason why the web admins should ever be able to know what your password is -- Store only a hash and if the password is lost, reset to a new one.
 
2012-07-12 01:20:09 PM
Crap. Now I have to change to my luggage combination too.
 
2012-07-12 01:53:46 PM

stolibro: Crap. Now I have to change to my luggage combination too.


Well-played.
 
2012-07-12 03:06:23 PM
They stored passwords in plain text, and then they tell ME how I'M should to be safe with my passwords???

/Storing passwords in plaintext should be a FCC fine or something
 
2012-07-12 03:44:12 PM

Hyjamon: As someone who just locked up my account on of the databases I use at work I am getting a kick.

/If I am going to need a password for 5 different things, can we at least decide which characters are allowed and use the same for all five? Or at least tell you what characters are allowed at the login screen!!
//This one requires a letter and number, this one requires numbers only, this one wants a special character, this one can't handle special characters.
///Instead I have to remember 5 different passwords that need to be changed every 3 months. Thanks.

I have a nice system for creating passwords that I can remember, but remembering which variant each site needs is fun.

Bonus: one of the systems is kinda old and I used a special character to lead off the password and I think the software treated it as a command or script and I got a fun error message.


FFS, this! I have a system that goes through multiple iterations to create my passwords, So, I can usually guess my paswords. However, I can't always remember the protocol for what characters are allowed for each site.
 
2012-07-12 05:11:50 PM

spentmiles: I always make my work computer's password something that would be fun to tell IT security over the phone if I'm ever fired. Favorites include:

- I'm not telling
- You're the genius, figure it out
- YEAH RIGHT
- Why do you need that?
- Go fistfark yourself


Only if you're ever fired? What about those weekly calls from them to verify things are in good order? I swear the people they hire to do that are getting harder and harder to understand, last week I could barely understand him because some sort of what I could only assume to be russian comedy was playing in the back ground. Talk about unprofessional.
 
2012-07-12 06:52:18 PM
/Storing passwords in plaintext should be a FCC fine or something

Same should go for unsalted MD5/SHA password hashes while we're at it...
 
2012-07-12 07:03:11 PM

ajeoae: /Storing passwords in plaintext should be a FCC fine or something

Same should go for unsalted MD5/SHA password hashes while we're at it...


Just the lack of SSO should be a PCI/HIPPA/SOX/etc violation. Anyone who has to remember multiple passwords at work and type them in all day long is going to start leaving them around or generating stupid variations of the same ones.
 
2012-07-12 07:46:08 PM

MFAWG: I wondered what that was all about. I've had Yahooooo! Mail longer than I've had any street address ever


I'm glad I'm not the only one.
 
2012-07-12 07:54:20 PM
I've been reading the txt file between compiles and some of the passwords are derptastic. hotmail accounts, not surprisingly, have the weakest passwords with gems like "spaceman" and "dogmonky", Oh yeah, then there's the toolbag at "bidmyreno.com" with the password Porsche911. Keep dreaming, buddy. Another guy's password was his first name. There are a LOT of people with qwerty123 as their password. A LOT. It's an entertaining read.

Anyone have a good herpaderp gif?
 
2012-07-12 08:28:39 PM
It had been so long since I logged into my Yahoo account that it asked me for Captcha-type thingy. The I re-read the articles and it was apparently Yahoo voice. Which I had never heard of. Changed the password anyway, and cleaned up some other info, and did NOT create a profile.

Also, +1 for Keepass.
 
2012-07-12 08:30:37 PM

LoneWolf343: Do people even encrypt their password databases anymore?NutWrench: I've been using this for years: KeePass Password Safe. Now you only have to remember one password. There are also Android and IOS apps that support it. Freeware.

My respect for Murphy's law prevents me from handing off password management to a program. I can't help but believe that you are unbelievably farked if you ever change computers.


Keepass will reside on multiple devices with multiple encryped databases. Phone included. Don't worry.
 
2012-07-13 03:12:50 AM

MFAWG: I wondered what that was all about. I've had Yahooooo! Mail longer than I've had any street address ever


I've had my Yahoo e-mail address for 15 years. It's my spamcatcher address, and I see no reason to change it any time soon.

Christ, 15 years...
 
2012-07-13 04:48:19 AM
I'm still pissed at Bank of America and other sites that don't allow special characters as part of the password.
 
2012-07-13 07:14:21 AM

Contents Under Pressure: I've been reading the txt file between compiles and some of the passwords are derptastic. hotmail accounts, not surprisingly, have the weakest passwords with gems like "spaceman" and "dogmonky", Oh yeah, then there's the toolbag at "bidmyreno.com" with the password Porsche911. Keep dreaming, buddy. Another guy's password was his first name. There are a LOT of people with qwerty123 as their password. A LOT. It's an entertaining read.


To be fair, a lot of them are probably throwaway accounts.
 
2012-07-13 06:17:45 PM
shiat. I was on there.
 
Displayed 29 of 29 comments

View Voting Results: Smartest and Funniest


This thread is archived, and closed to new comments.

Continue Farking
Submit a Link »






Report