Hacks force Reddit to reset 100,000 passwords
Yesterday, online opinion community Reddit announced that it will effect 100,000 password resets over a two week period.
A spokeperson for Reddit has cited the “general uptick” in account infiltrations on many large sites as reason for their security precautions.
Using the example of the recent email and password leaks of more than 100 million LinkedIn accounts, the company suggests that it has taken measures as a reaction to this breach.Earlier in May, Reddit reported another security compromise, as a “bored” hacker wreaked havoc over a high volume of seemingly arbitrary subarticles.
Christopher Slowe, Reddit’s founding engineer, noted the hacks’ relation to a broader security issue: “Though Reddit itself has not been exploited, even the best security in the world won’t work when users are reusing passwords between sites.
“If you haven’t seen it in the news, there have been a lot of recent password dumps made available on the parts of the internet most of us generally avoid. With this access to likely username and password combinations, we’ve noticed a general uptick in account takeovers (ATOs) by malicious (or at best spammy) third parties.”
Slowe has advised that continued password resets will be scheduled, and asked for users to think about their password carefully, establish a recovery email in case of hacking, and be keep a vigilant eye on their accounts for any suspect activity.
View Internet News Archive