Discus breached 17.5 million user accounts in 2012, then did everything right about it in 2017

doctorow · October 9, 2017, 4:29pm

Originally published at: https://boingboing.net/2017/10/09/salt-your-hashes.html

…

willmore · October 9, 2017, 4:58pm

This sure sounds familiar: https://bbs.boingboing.net/t/disqus-confirms-over-17-5-million-email-addresses-were-stolen-in-2012-hack-of/109040

LutherBlisset · October 10, 2017, 10:50am

I just checked. My account is in the list. I didn’t get any notification. My e-mail address used is active.

I shall try to login there.

LutherBlisset · October 10, 2017, 10:55am

Ok, I could still login with my old credentials. Notably, underneath the e-mail address, it said my mail acc was unverified.

That might be the reason. However, even despite that, I wouldn’t conclude they did everything right, @doctorow.

versuchsanstalt · October 10, 2017, 5:17pm

Thank you for the BBS. Thank you very much. Thank you for letting me participate in the discussion without forcing Disqus on me.

I should reiterate that I love the BBS. It’s not only slick and working great. I like the thought that my account information is with Boingboing only.

One breach at a time, please. Not one to rule them all.

VenTatsu · October 11, 2017, 4:22pm

That is not entirely true according to the privacy policy

We collect information when you use our Discussion Forum

We partner with Civilized Discourse Construction Kit, Inc., (“CDCK”) to provide and host a Discourse.org Discussion Forum. They allow you to create an account that can be used on all their hosted forums. This policy controls how we use the data we are able to access about your account and your use of the Forum. However CDCK also has access to and is able to share all information associated with your Discussion Forum account and your posts on our Forum. Our agreement with them requires that they only use this data to run this forum and for no other purposes. However if you are going to create an account and use the forum, we strongly urge you to read the CDCK Privacy Policy here. You should also remember that anything you post on the forum is public and therefore is not covered by this privacy policy-- it is viewable by everyone on the Internet.

doctorow · October 14, 2017, 4:29pm

This topic was automatically closed after 5 days. New replies are no longer allowed.

Topic		Replies	Views
Disqus Confirms Over 17.5 Million Email Addresses Were Stolen In 2012 Hack of meta	3	879	November 6, 2017
After ratting out users to China, Yahoo created (and then blew) a $17m "dissidents' fund" boing	7	1331	April 17, 2017
Boing Boing was hacked boing	109	7394	January 18, 2020
Yahoo revises number of hacked accounts from 500,000,000 to 3,000,000,000 boing	26	2510	October 8, 2017
At least 500 million Yahoo accounts hacked in 2014, "state-sponsored actor" blamed boing	28	2801	September 27, 2016

Discus breached 17.5 million user accounts in 2012, then did everything right about it in 2017

Related topics