Blog Archive

Viewing page 1 of posts tagged "passwords" from November 06, 2013\ .

How Not to Store Passwords: Adobe Edition

A quick peek at the Adobe password breach.

Recently, someone broke into Adobe's network, stealing source code and part of their password database. It later turned out to affect at least 38 million people.

I always try to investigate to see if I am personally impacted by these leaks. Usually, that means submitting a carefully hashed password to some online service built to inform you if you were part of the leak. This time, however, the entire file was readily, and easily availible (by which I mean my Twitter feed included a link to it, several times).

So... why not take a peek?

$ grep mikeboers cred
78626857-|--|-adobe@mikeboers.com-|-+8pqoIav87bioxG6CatHBw==-|-Same scheme.|--

While not surprising, I am still dissapointed to be included.

Digging just a little bit deeper, there are some very troubling things in this file.

Read more... (2 minutes remaining to read.)

Posted . Categories: .

There are no more posts tagged "passwords".