LulzSec's latest exploit underscores danger of reusing passwords


Internet hacking group LulzSec continued its streak this week with the theft of 62,000 email addresses and passwords from Writerspace is a discussion forum for readers of mystery and romance novels, and it's still trying to work out the details of the digital break-in and alert the victims. LulzSec promptly posted the pilfered data online, challenging criticisms with the assertion that hackers who keep "silent" are more dangerous.

As part of a press release celebrating the group's thousandth tweet, LulzSec wrote: "We're damn sure others are playing the silent game. Do you feel safe with your Facebook accounts, your Google Mail accounts, your Skype accounts? What makes you think a hacker isn't silently sitting inside all of these right now...perhaps selling them off?"

At least one member of Writerspace had to spend a good part of Thursday morning trying to reverse $712 in charges for an iPhone ordered from Amazon (NASDAQ: AMZN) after someone broke into her account, according to a report on PCWorld. Debbie Crowell had apparently reused the same password on and Amazon, which resulted in her being hacked. Leaving aside the issue of why Writerspace is storing its user passwords in plain text, the obvious problem highlighted by LulzSec is the need to use different passwords. Question is: Do you use a unique password for all your online accounts?

For more:
- check out this article at SecurityNewsDaily
- check out this article at PCWorld

Related Articles:
Will 'digital delinquents' like LulzSec rule the Internet?

Google: Change your password twice a year

User names and passwords of 1.3 million stolen in weekend Gawker Media hack

Filed Under