Better Living Through Technology: a blog dedicated to emerging
technology trends in hardware, software, webware, marketing and beyond
 
 
 



« New Form of Blog Comment Spam? | Main | Online Advertising Sucks Because the Ads Suck »

My Password Has Been Compromised
Ed Kohler

This annoys me: I found a site with my favorite password on it.

This is a problem since the combination of letters and numbers is absolutely unique. The only way it would show up on the web is if I put it there or a site's security was breached.

In this case, it looks like the latter since the Chinese site displaying it has a long list of terms that are clearly passwords ranging from things that are extremely obvious to rather complex terms.

One thing I noticed was that many passwords seem to be simple variations on what's presumably the username. For example, a password like johndoe1 could probably be tied to a username "johndoe." That's still pretty vague, but it's not nearly so vague when the password + 1 is a much less common name.

To me, this marks a good time to switch up passwords. Nothing that I'm aware of has been compromised, but why wait for that, eh?

In case you're wondering, my new password will not be edkohler1.

Listen to this article Listen to this article posted by Ed Kohler on August 23, 2007 8:05 AM |
More posts about Security

Bookmark My Password Has Been Compromised at del.icio.us    Digg My Password Has Been Compromised at Digg.com     Bookmark My Password Has Been Compromised at Spurl.net    Bookmark My Password Has Been Compromised with wists    Bookmark My Password Has Been Compromised at Simpy.com    Bookmark My Password Has Been Compromised at NewsVine    Blink this My Password Has Been Compromised at blinklist.com    Bookmark My Password Has Been Compromised at Furl.net    Bookmark My Password Has Been Compromised at reddit.com    Fark My Password Has Been Compromised at Fark.com    Bookmark My Password Has Been Compromised at blogmarks    Bookmark My Password Has Been Compromised at YahooMyWeb




TrackBack

TrackBack URL for this entry:
http://www.technologyevangelist.com/cgi-bin/mt-tb.fcgi/1120

Comments

1. Posted by: Tara (PassPack) on August 23, 2007 3:44 PM:

Unfortunately, making "strong" passwords is becoming more and more complex of an operation - especially since you need a completely unique password for every site or service that you use.

I wrote a quick post on it over at my company blog. I run an online password manager, so there's clearly a product plug in there, but the information should be useful regardless.

Choosing Passwords, Long is Strong

Cheers,
Tara Kelly
PassPack Founding Partner



2. Posted by: May C on August 23, 2007 4:00 PM:

This is getting me very worried. I'm curious where you found this information? I need to check out whether my password is in there so I should change it and spend the rest of my life doing so too. Argh.



3. Posted by: Josh on August 23, 2007 5:40 PM:

That's interesting. I think wise site administrators should create some "ringer" username and password pairs, and occasionally search for them - on the web, but also on the disk. They should not exist anywhere in plain-text form.



4. Posted by: Ed Kohler on August 23, 2007 8:30 PM:

May, I Googled my pass and found one result. The resulting page was in Chinese but clearly has a table of passwords on it. I'm not going to link to it, but now you know how I found it.



5. Posted by: Bill McGuire on August 24, 2007 12:32 AM:

Luckily my password does not show up. I use to google my SSN and credit card numbers and they would show up in huge lists of other numbers. They no longer show up. I guess I should be comforted in this.



6. Posted by: Galen on August 24, 2007 11:54 AM:

Good thing you didn't "AOL" your password back in the day before they released millions of search queries.

So will it be K0hler3d?



7. Posted by: Ed Kohler on August 24, 2007 2:21 PM:

Thanks for nothing, Galen. Back to the password creation drawing board. :-)



Post a comment

Name:


Email Address:


URL:
Remember personal info?

Comments:

HTML Tags you can use in your posts:
<b>Bold</b> = Bold
<i>Italicized</i> = Italicized
<a href="http://www.othersite.com">Link to Other Site</a> = Link to Other Site


Please keep comments on-topic. Contact authors or other commenters
directly for off-topic conversations.

Notify me of future comments via e-mail



Technology Evangelist Digest - Free Newsletter
Sign up for the free Technology Evangelist Digest to receive daily updates, editorials, and practical advice on emerging technology trends in hardware, software, webware, marketing and beyond.

Technology Evangelist Digest will keep you up to date on the technology trends that will help make you more productive and efficient both in business and your personal life.

Let's face it: If you made it to this line, you must have found something valuable on this page, right? Think about how cool it would be to have something free and interesting to read every day from Technology Evangelist by signing up today.

1. Fill in your email below,
2. Then click on the confirmation email you receive.
3. That's it. Your first Technology Evangelist Digest will arrive within 24 hours.




Previous Entries:
Tag Cloud
 
 
 


 
 
© 2005-2007 Technology Evangelist