Reddit hack could expose private messages and user identities

Telegraph

Select a language for the TTS:
UK English Female
UK English Male
US English Female
US English Male
Australian Female
Australian Male
Language selected: (auto detect) - EN

Play all audios:

Matthew Field 02 August 2018 11:26am BST A major security breach at Reddit has left sensitive details of users in the hands of hackers, including their email addresses, private messages and

usernames. The online discussion board, which prides itself on providing anonymity, said hackers compromised employees' accounts by gaining access to two datasets. The first contained

old user information from May 2007. Hackers were able to gather information including usernames, email addresses, private messages and encrypted passwords. Users affected have been

informed. Hackers were also able to access a database relating to the site’s newsletter. The information in the database included usernames and associated email addresses. Together, these

details could be used to work out the real identities of Reddit users by linking it to site activity. Reddit, which is known as "the front page of the internet", reported the

breach mostly affected accounts made from between 2005 and 2007, early in the site's history. It did not confirm how many accounts were affected. However, the site had 36 million

accounts as of 2015, so the number from a decade ago would be significantly lower. Security experts have slammed Reddit for refusing to contact users who had their details stole in the

second breach. Cyber security expert Troy Hunt told the Telegraph: "Not contacting people who had their username and email addresses exposed is a very odd move because there are obvious

privacy ramifications. Everyone should get an email." Top 5 tips | for staying safe online There are also worries over how the hack was carried out. Attackers managed to bypass

Reddit's security systems, which used two-factor authentication. So-called 2FA normally means users are sent a text message with a PIN code as an extra layer of security after entering

their password. In Reddit's case, it seems this PIN was intercepted, enabling the hacker entry into employee accounts. Reddit said it would be contacting users affected in the breach

that occurred for accounts between 2005 and 2007. It would be asking all those users to change their passwords.

Wa football loses $4m but it’s still ‘better off’

Exclusive, Mark Duffield, Chief Sports ReporterThe West Australian WA Football Commission chairman Murray McHenry has de...

Artificial Rain | Nature

ABSTRACT IN an article on artificial rain in your issue of December 13, 1900, Prof. Abbe alludes to “the popular belief ...

My father created the sff, i commanded it

MAJOR GENERAL SUJAN SINGH UBAN, A LEGENDARY VETERAN OF THE SECOND WORLD WAR, WAS A NATURAL CHOICE TO RAISE, TRAIN AND CO...

Does 90/180 day rule affect visiting france if i have spanish residency?

RULES ON SPENDING TOO LONG IN ANOTHER EU COUNTRY ARE IN PLACE FOR EVERYONE Reader Question: I am a non-EU citizen with a...

Scmos noise-correction algorithm for microscopy images

Access through your institution Buy or subscribe To the Editor: Scientific complementary metal-oxide semiconductor (sCMO...

Chromvar: inferring transcription-factor-associated accessibility from single-cell epigenomic data

ABSTRACT Single-cell ATAC-seq (scATAC) yields sparse data that make conventional analysis challenging. We developed chro...