Hope this isn’t a repeated submission. Funny how they’re trying to deflect blame after they tried to change the EULA post breach.

  • Alien Nathan Edward
    link
    fedilink
    English
    2211 months ago

    https://haveibeenpwned.com/

    Gentle reminder to plop your email address in here and see if you, much like 14,000 23andMe users, have had an account compromised somewhere. Enable two-factor where you can and don’t reuse passwords.

    • @Eezyville@sh.itjust.worksOP
      link
      fedilink
      English
      411 months ago

      Welp my two gmail address have been pwned. Good thing I don’t use them and I have limited use of Google services.

      • @drivepiler@lemmy.world
        link
        fedilink
        English
        7
        edit-2
        11 months ago

        Just to clarify; It doesn’t necessarily mean that your Google account password is compromised. It lists data breaches of services where you used the provided email to register. The password you chose for that service at the time of the breach has been compromised. If you don’t use the same password everywhere, or changed your password after the breach, your other accounts are not compromised.

        Also, as OP said, use two-factor authentication. And please also use a password manager.

        • @Eezyville@sh.itjust.worksOP
          link
          fedilink
          English
          211 months ago

          I understand that. I use KeePassXC and love it. I just notice that those gmail accounts get all the spam so I abandoned them.

    • Tier 1 Build-A-Bear 🧸
      link
      fedilink
      English
      211 months ago

      It’s saying I’ve been hacked on websites I’ve legitimately never even heard of, websites I have 100% never interacted with. Is this just a normal consequence of companies sharing all my data with other companies?

      • Alien Nathan Edward
        link
        fedilink
        English
        111 months ago

        I can’t speak to how you ended up on the list. The way haveibeenpwned works is that they crawl publicly available credential dumps and grab the associated usernames/emails for each cred pair. However it got there, your email ended up in one of those dumps. Recommend you change your passwords, make sure you don’t repeat the same password across multiple sites and use a password manager so you don’t have to remember dozens of passwords yourself.