Torrent Sites are the Reason for Twitter Password ResetsAdded: Wednesday, February 17th, 2010
Category: About Torrents > Staying Safe And Secure
Tags:ET, p2p, Torrent, Piracy, Peer To Peer, Network, Hackers, Internet, BitTorrent, utorrent, bitcomet, extratorrent, twitter, 2010, www.extrattorrent.com
We now know the reason why Twitter has decided to reset some of its users’ passwords last Tuesday since there have been an external phishing attack there. It became clear that the problem, first described by Twitter as a "combination of multiple bad acts," was actually part of a dirty trick, and that might have exposed their users also visiting torrent sites that require login credentials. So the event again emphasizes that developing management habits of good password is an important part of keeping secure not only your Twitter identity, but also all the others you use online .
Torrent Sites were the first exposed
Recently Twitter pointed in their blog to some Website designer being mainly alleged for recent attacks. Several years he had been creating templates of websites for forums and torrent sites requiring newcomers to create login and password. Then the designer would sell those templates to parties that wanted to start with their own forum or torrent site.
Eventually these third-parties would start torrent sites, with the latest software, movie and music downloads, so people would naturally begin signing up for using the service.
But the designer had left a backdoor into every site that allowed him to get all the torrent site's members’ login credentials. Of course site administrator didn’t know about that.
After all that our designer just got the login credentials and simply ran them against sites like Twitter. Everybody knows that a lot of people usually use identical login information for different services and websites, so the site designer had access to some Twitter accounts soon. What’s even worse – he left a number of holes in the site design’s security allowing other hackers like him to exploit the sites – preventing users from logging in and redirecting them to another site asking for the login credentials again, for instance. This is an easy way to collect login credentials and gain access to Twitter accounts.
We don’t know exactly which torrent sites were exposed, but Twitter is advising everybody being the members of torrent site to reset passwords. We hope you know that creating passwords like ‘12345’ or ‘password’ is not really a good way to secure your account, and you better make sure to use a numbers and letters eight characters in length in all at least. However the reason for that hack was not password strength but password management.
February 17th, 2010Posted by:
Wednesday, February 17th, 2010
|nice read SaM ta :)|
|thanks for the info sam|
|posted by (2010-02-18 06:37:28)|
|good reason not to use the same password everywere, thx sam very intrestin as usual.||
Most Popular Stories