Data leak of DCUM passwords

post reply Forum Index » Website Feedback
[Post New]04/21/2024 21:16
quote
Anonymous
Hey Jeff

I've just changed my password (for when I use a log-in ID here) as I've had notification that there's been a DCUM data leak of them (passwords)

Thought you might want to know.
[Post New]04/21/2024 21:17
quote
jsteele
Site Admin Offline
Can you tell me more about the leak? Or the exact wording of the message you received?
DC Urban Moms & Dads Administrator
http://twitter.com/jvsteele
https://mastodon.social/@jsteele
[Post New]04/21/2024 21:23
quote
Anonymous
jsteele wrote:Can you tell me more about the leak? Or the exact wording of the message you received?


It was a pop up on my Mac. I get it almost every day but normally they tell me there's been a data leak of passwords from things I no longer use, like Instacart. So the wording is usually like

You should know there's been a data leak of passwords on the following websites; DCurbanmom.com, instacart, fandango

etc
[Post New]04/21/2024 21:28
quote
jsteele
Site Admin Offline
Anonymous wrote:
jsteele wrote:Can you tell me more about the leak? Or the exact wording of the message you received?


It was a pop up on my Mac. I get it almost every day but normally they tell me there's been a data leak of passwords from things I no longer use, like Instacart. So the wording is usually like

You should know there's been a data leak of passwords on the following websites; DCurbanmom.com, instacart, fandango

etc


What provides the pop-up?

Just FYI, passwords are stored in encrypted format and salted. So it would be somewhat hard to decrypt them. I also have two monitoring services to alert me to compromised passwords and neither has alerted about DCUM.
[Post New]04/21/2024 21:35
quote
Anonymous
I just opened Safari and got a new one.
I can't copy / paste but this is what it says

COMPROMISED PASSWORD
The passwords for "scouting.org", "google.com" and "wayfair.com" accounts have appeared in a data leak, putting your accounts at high-risk of compromise. Safari can help you re-secure your accounts.

And that last bit "re-secure your accounts" is a link of some kind.
[Post New]04/21/2024 21:41
quote
jsteele
Site Admin Offline
Anonymous wrote:I just opened Safari and got a new one.
I can't copy / paste but this is what it says

COMPROMISED PASSWORD
The passwords for "scouting.org", "google.com" and "wayfair.com" accounts have appeared in a data leak, putting your accounts at high-risk of compromise. Safari can help you re-secure your accounts.

And that last bit "re-secure your accounts" is a link of some kind.


Okay, that makes a lot more sense. You probably used the same password on multiple sites (not necessarily those that were listed). That password has appeared in a leak, but it was not necessarily obtained from DCUM.

In other words, say that you used the password "pw123" on DCUM and then also used "pw123" on. let's say, att.com (which was the subject of a web-publizied hack). Then Safari knows that your password was leaked from att.com and is also used on DCUM. So, it suggests that you change it on DCUM.

[Post New]04/21/2024 21:43
quote
Anonymous
OP is getting scammed
[Post New]04/21/2024 21:44
quote
jsteele
Site Admin Offline
Anonymous wrote:OP is getting scammed


No, he just misunderstood Safari's warning which is a bit misleading.
[Post New]04/22/2024 10:27
quote
Anonymous
jsteele wrote:
Anonymous wrote:OP is getting scammed


No, he just misunderstood Safari's warning which is a bit misleading.


I'm a she, but also a technical dunce, so thanks for the above explanation about the multiple use of the same password. Have changed them where it counts.
post reply Forum Index » Website Feedback
Message Quick Reply
Go to: 

Search   Recent Topics   Hottest Topics