LulzSec's latest exploit underscores danger of reusing passwords
Internet hacking group LulzSec continued its streak this week with the theft of 62,000 email addresses and passwords from Writerspace.com. Writerspace is a discussion forum for readers of mystery and romance novels, and it's still trying to work out the details of the digital break-in and alert the victims. LulzSec promptly posted the pilfered data online, challenging criticisms with the assertion that hackers who keep "silent" are more dangerous.
As part of a press release celebrating the group's thousandth tweet, LulzSec wrote: "We're damn sure others are playing the silent game. Do you feel safe with your Facebook accounts, your Google Mail accounts, your Skype accounts? What makes you think a hacker isn't silently sitting inside all of these right now...perhaps selling them off?"
At least one member of Writerspace had to spend a good part of Thursday morning trying to reverse $712 in charges for an iPhone ordered from Amazon (NASDAQ: AMZN) after someone broke into her account, according to a report on PCWorld. Debbie Crowell had apparently reused the same password on Writerspace.com and Amazon, which resulted in her being hacked. Leaving aside the issue of why Writerspace is storing its user passwords in plain text, the obvious problem highlighted by LulzSec is the need to use different passwords. Question is: Do you use a unique password for all your online accounts?