5 million ‘compromised’ Google accounts leaked

My id is not on the list. Nor are my other ids. One of my office collegues id is on the list. However, the password is again an older password.

As for the unique login for Google services, my password has always been unique and changes once a year. However, there are chances your computer may have a trojan/key logger, in which case this is defeated.

As for the chap who made the Sunny leone happy b'day thread, there is a very strong possibility that you could have a keygen on your own PC.
 
Many companies do the same, without using better tools such as proxies.
first I tried to open the last pass site and got the invalid cert error. but when I persistently tried for few other links, found out that my site completely blocks it. for distributing malicious software... guess our security team dont want employees to use last pass. :blackeye:
so they are simply replacing the cert lol...
 
first I tried to open the last pass site and got the invalid cert error. but when I persistently tried for few other links, found out that my site completely blocks it. for distributing malicious software... guess our security team dont want employees to use last pass. :blackeye:

I use Chrome Sync myself and dont prefer to use LastPass or some other software.

As for the security team - nothing can be done about that. Initially, my id too was blocked, now have given myself full access - even TE was blocked.

The main flaw in Chrome Password Sync is the Windows password. If that is cracked, then its game over. However, physical access to the device is needed.
 
As for the security team - nothing can be done about that. Initially, my id too was blocked, now have given myself full access - even TE was blocked.
the interesting thing they did was to replace the cert. now, the browser will nag and everyone thinks that last pass is a bad site. sneaky bastards. :D
 
I use Chrome Sync myself and dont prefer to use LastPass or some other software.

As for the security team - nothing can be done about that. Initially, my id too was blocked, now have given myself full access - even TE was blocked.

The main flaw in Chrome Password Sync is the Windows password. If that is cracked, then its game over. However, physical access to the device is needed.

Physical access is the number one factor in security. If someone has physical access to your device, the likelihood of a breach becomes much higher. They don't need to guess your password, they can simply take the entire harddrive.
 
the interesting thing they did was to replace the cert. now, the browser will nag and everyone thinks that last pass is a bad site. sneaky bastards. :D

Not really. Its a HTTPS MITM to see what site you are browsing. Done by the firewall.[DOUBLEPOST=1410427887][/DOUBLEPOST]
Physical access is the number one factor in security. If someone has physical access to your device, the likelihood of a breach becomes much higher. They don't need to guess your password, they can simply take the entire harddrive.

No. I dont agree with that completely. Each has its own factor. And we can secure it just as easily.
 
Last edited:
Back
Top