Customize Consent Preferences

We use cookies to help you navigate efficiently and perform certain functions. You will find detailed information about all cookies under each consent category below.

The cookies that are categorized as "Necessary" are stored on your browser as they are essential for enabling the basic functionalities of the site. ... 

Always Active

Necessary cookies are required to enable the basic features of this site, such as providing secure log-in or adjusting your consent preferences. These cookies do not store any personally identifiable data.

No cookies to display.

Functional cookies help perform certain functionalities like sharing the content of the website on social media platforms, collecting feedback, and other third-party features.

No cookies to display.

Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics such as the number of visitors, bounce rate, traffic source, etc.

No cookies to display.

Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.

No cookies to display.

Advertisement cookies are used to provide visitors with customized advertisements based on the pages you visited previously and to analyze the effectiveness of the ad campaigns.

No cookies to display.

Reddit was hacked in a phishing attack targeting its employees

Hi, Welcome

Reddit hacker snagged email addresses and old passwords

Rob LeFebvre
Rob LeFebvre

Earlier this month, a hacker accessed a few of Reddit‘s systems, grabbing some current email addresses and a database backup from 2007 that contained account passwords. The company assured its users that the attacker did not gain write access to any systems, and was not able to alter any information. The company has since locked down their production systems and API keys while enhancing its monitoring system and logs.

According to Reddit, all company data from the site’s launch in 2005 to 2007, including account credentials and email addresses, was accessed, likely by intercepting Reddit’s SMS-based authentication system. Reddit said that all public messages from this time period were grabbed, as well as some private conversations. If you were among the members affected, you’ll get a message from Reddit and the company will reset your password on still-valid accounts. Further, the hacker was able to access the logs containing email digests Reddit sent out between June 3rd and June 17th of this year. You were only affected if you received an email from noreply@redditmail.com between those dates.

Reddit was hacked in a phishing attack targeting its employees

Reddit has reported the incident to law enforcement, who began an investigation into the matter. In addition to messaging affected users, the company has taken measures to assure its systems are more secure, including requiring token-based two-factor authentication (2FA) for access to sensitive systems. Whether you were directly affected or not, Reddit urges members to reset their password to something unique and strong, and to enable 2FA via an authenticator app.

Engadget is a web magazine with obsessive daily coverage of everything new in gadgets and consumer electronics  

(31)

Report Post