[TechSpot] Facebook admits it stored hundreds of millions of user passwords in plain text - Page 2 - Overclock.net - An Overclocking Community

Forum Jump: 

[TechSpot] Facebook admits it stored hundreds of millions of user passwords in plain text

Reply
 
Thread Tools
post #11 of 25 (permalink) Old 03-22-2019, 11:23 AM
Old to Overclock.net
 
xJumper's Avatar
 
Join Date: Jan 2008
Posts: 1,992
Rep: 109 (Unique: 96)
Quote: Originally Posted by mouacyk View Post
Hey, OCN didn't have enrcrypted login until recently.

And most people who were computer literate would rail on them for that. Really post 2013, unencrypted coms and plain text passwords is like another user here said, elementary school level mistakes.


There's also a bit of a difference between your account on a web forum getting owned and Facebook which is basically a giant life container to some people.

362436
(15 items)
CPU
AMD Ryzen 5 1600
Motherboard
Asus Prime X370-A AMD Ryzen AM4 DDR4
GPU
Gigabyte GeForce GTX 950
RAM
2x Corsair Valueselect 8GB 288 Pin DDR4 SDRAM DDR4 @ 2133
Hard Drive
Corsair Force LS 2.5" 120GB SATA III MLC SSD
Optical Drive
Lite-On 24X SATA DVD/RW Optical Drive
Power Supply
Corsair RM550x 550W 80 Plus Gold
Cooling
Noctua NH-L9A-AM4 Low-Profile
Case
Antec NSK4100 Steel ATX Mid Tower
Operating System
Mint 18.2 x64
Monitor
HP 24" LCD/LED 1920x1080
Keyboard
IBM PC-AT
Mouse
Logitech G5
Audio
Sennheiser HD650
Audio
Asus Essence STX II
▲ hide details ▲


xJumper is offline  
Sponsored Links
Advertisement
 
post #12 of 25 (permalink) Old 03-22-2019, 01:30 PM
New to Overclock.net
 
doritos93's Avatar
 
Join Date: Oct 2009
Location: Montreal
Posts: 2,281
Rep: 119 (Unique: 84)
Quote: Originally Posted by xJumper View Post
Quote: Originally Posted by mouacyk View Post
Hey, OCN didn't have enrcrypted login until recently.

And most people who were computer literate would rail on them for that. Really post 2013, unencrypted coms and plain text passwords is like another user here said, elementary school level mistakes.


There's also a bit of a difference between your account on a web forum getting owned and Facebook which is basically a giant life container to some people.
Really, 2013.. please tell me more



doritos93 is offline  
post #13 of 25 (permalink) Old 03-23-2019, 12:35 PM
Old to Overclock.net
 
xJumper's Avatar
 
Join Date: Jan 2008
Posts: 1,992
Rep: 109 (Unique: 96)
Quote: Originally Posted by doritos93 View Post
Really, 2013.. please tell me more

Doesn't seem like that long ago, I ran the https everywhere beta and noscript enforcing https back then and most serious use sites worked fine. But for arguments sake I'll say 2016, post-2016 non encrypted coms is amateur hour stuff especially given that SSL/TLS has existed in some way since the late 1990's and the currently most popular TLS 1.2 was around since 2008. Hashing even using something as rudimentary as the old MD5 has existed for quite some time as well, plaint text password db's is unforgivable. Pretty sure VS which now owns OCN got owned from a plaintext password leak.

362436
(15 items)
CPU
AMD Ryzen 5 1600
Motherboard
Asus Prime X370-A AMD Ryzen AM4 DDR4
GPU
Gigabyte GeForce GTX 950
RAM
2x Corsair Valueselect 8GB 288 Pin DDR4 SDRAM DDR4 @ 2133
Hard Drive
Corsair Force LS 2.5" 120GB SATA III MLC SSD
Optical Drive
Lite-On 24X SATA DVD/RW Optical Drive
Power Supply
Corsair RM550x 550W 80 Plus Gold
Cooling
Noctua NH-L9A-AM4 Low-Profile
Case
Antec NSK4100 Steel ATX Mid Tower
Operating System
Mint 18.2 x64
Monitor
HP 24" LCD/LED 1920x1080
Keyboard
IBM PC-AT
Mouse
Logitech G5
Audio
Sennheiser HD650
Audio
Asus Essence STX II
▲ hide details ▲


xJumper is offline  
Sponsored Links
Advertisement
 
post #14 of 25 (permalink) Old 03-24-2019, 11:21 PM
Master of Black Snow
 
Ceadderman's Avatar
 
Join Date: Mar 2010
Location: West of the Pecos.
Posts: 19,242
Rep: 699 (Unique: 518)
Quote: Originally Posted by speed_demon View Post
MySpace was deemed too big to fail at one point and now look where it is. Facebook could easily meet the same fate if things don't start looking up for it.
MySpace didn't "Fail". Justin Timberlake bought it from the developer. Then he made it an Artists' site and didn't bother to support it. The original site didn't fail. The developer made out pretty well for it and did support it till he got paid. I would love to Fail as spectacularly.

~Ceadder

Black snow
(17 items)
CPU
Ryzen 7 1800x
Motherboard
ASUS Crosshair VII Hero
GPU
XFX RX 480 Black Edition 8GB
RAM
G.SKILL TridentZ Series 16GB (2 x 8GB) 288-Pin DDR4 SDRAM DDR4 3200 (PC4 25600) Intel Z370 Platform Desktop Memory Model F4-3200C14D-16GTZSK
Hard Drive
Western Digital Black
Hard Drive
Samsung 750 EVO
Hard Drive
Samsung 850 EVO
Hard Drive
Samsung 850 EVO
Hard Drive
Adata m.2
Power Supply
EVGA Supernova
Cooling
EKWB Crosshair VI Acetyl Monoblock
Case
Lian Li O11 Dynamic
Operating System
Windows 10 Home 64bit USB
Monitor
Samsung NU6900
Keyboard
Corsair K55
Mouse
Corsair M65
Other
Xbox Wireless Controller: Winter Forces Special Edition - Xbox One/Xbox One S/Windows 10
CPU
AMD Phenom II X6 1100T
Motherboard
Crosshair IV Formula
GPU
XFX RX 480 Black Edition 8GB
RAM
Corsair Dominator
Hard Drive
x2 HITACHI 1TB Deskstars 1TB RAID0
Hard Drive
Samsun 750 EVO
Power Supply
EVGA
Cooling
EK D5 Vario
Cooling
EK x3 250 RGB
Cooling
Yate Loon 120x20 (D12SM-12C) Medium Speed Silent Fans
Cooling
EK Supreme HF Classified
Cooling
Monsoon 1/2"x5/8" PETG White Hardline tubing.
Cooling
Monsoon Economy Hardline fittings
Cooling
EK x3 CSQ Clean Acrylic
Cooling
EK RX 480 Copper/Acetyl
Case
HAF 932
Operating System
Win7 64 bit Ultimate OEM
Monitor
Asus VH222H Black HDMI Widescreen
Keyboard
Logitech the OCZ went buhbye adios. Don't know what I'm going to replace it with.
Mouse
Logitech g9x
Mouse
COOLER MASTER Weapon of Choice: M4 Duramesh Pad
Audio
Logitech X-240 2.1 speakers
Other
Creative X-Fi
Other
Sunbeam Rheosmart 3
▲ hide details ▲


Ceadderman is offline  
post #15 of 25 (permalink) Old 03-25-2019, 03:17 AM
Iconoclast
 
Blameless's Avatar
 
Join Date: Feb 2008
Posts: 30,035
Rep: 3133 (Unique: 1869)
Quote: Originally Posted by tpi2007 View Post
At this point in time, I wonder what will it take for people to stop using Facebook?
Either a fundamental change in human nature that results in the bulk of them ceasing to be insecure and vapid narcissists, or a worthy competitor that replaces Facebook with something even worse.

...rightful liberty is unobstructed action according to our will within limits drawn around us by the equal rights of others. I do not add 'within the limits of the law,' because law is often but the tyrant's will, and always so when it violates the right of an individual. -- Thomas Jefferson
Blameless is offline  
post #16 of 25 (permalink) Old 03-25-2019, 12:00 PM
New to Overclock.net
 
skupples's Avatar
 
Join Date: Apr 2012
Location: Fort Lauderdale
Posts: 17,365
Rep: 526 (Unique: 297)
Quote: Originally Posted by xJumper View Post
Lol, most people have no idea nor do they understand the ramifications; most people use whateverpassword1985 or something to that affect across all websites. Most people have no idea that they have likely already been owned and their credentials exists in various password databases floating around .onion sites.


It has been common practice by any big companies like financial institutions to be storing passwords in hashed value going back to at least the early 2000's. The fact that Facebook of all the big and mighty companies didn't do that when they clearly have the expertise and resources to know and do better shows you they actually don't give two poops about any of their users. Remember Zuckerberg said his users are idiots, shows you how much he cares; it's also funny that he isn't wrong.





If you don't see it now, you never will.
this, and their ability to sync it together to a single handle you've used is astounding. y'all could go find my favorite password of the 2010s right now if you knew where to look
skupples is offline  
post #17 of 25 (permalink) Old 03-25-2019, 12:59 PM
Old to Overclock.net
 
xJumper's Avatar
 
Join Date: Jan 2008
Posts: 1,992
Rep: 109 (Unique: 96)
Quote: Originally Posted by skupples View Post
this, and their ability to sync it together to a single handle you've used is astounding. y'all could go find my favorite password of the 2010s right now if you knew where to look
Food for thought right here.

I've looked at myself, a self proclaimed tinfoil level security/privacy enthusiast and even I have been "owned". Couple passwords for handles from the mid 2000's on some sites were floating around some password db's. If you've been an internet user for at least the past ten years, you likely have been owned/part of a data breach at some point. I've challenged my "normie" friends on this a few times and turned out to be right for a few of them, the ones that were willing to let me know their password/handles so I could look them up.

362436
(15 items)
CPU
AMD Ryzen 5 1600
Motherboard
Asus Prime X370-A AMD Ryzen AM4 DDR4
GPU
Gigabyte GeForce GTX 950
RAM
2x Corsair Valueselect 8GB 288 Pin DDR4 SDRAM DDR4 @ 2133
Hard Drive
Corsair Force LS 2.5" 120GB SATA III MLC SSD
Optical Drive
Lite-On 24X SATA DVD/RW Optical Drive
Power Supply
Corsair RM550x 550W 80 Plus Gold
Cooling
Noctua NH-L9A-AM4 Low-Profile
Case
Antec NSK4100 Steel ATX Mid Tower
Operating System
Mint 18.2 x64
Monitor
HP 24" LCD/LED 1920x1080
Keyboard
IBM PC-AT
Mouse
Logitech G5
Audio
Sennheiser HD650
Audio
Asus Essence STX II
▲ hide details ▲


xJumper is offline  
post #18 of 25 (permalink) Old 03-26-2019, 08:13 PM
RIP OCN
 
Join Date: Dec 2014
Posts: 543
Rep: 25 (Unique: 19)
Quote: Originally Posted by white owl View Post
What's funny is that the type of person who uses FB on the daily isn't likely to understand why this is a problem so it will likely go unnoticed unless there's a FB post about it.
Exactly. This probably won't have much of an impact on the user base, most people won't care about this information, it will be a tiny blip for FB. Need some sort of regulatory body that can shut the site down until this kind of issue is resolved.
anti-clockwize is offline  
post #19 of 25 (permalink) Old 03-27-2019, 12:17 PM
New to Overclock.net
 
Nechen's Avatar
 
Join Date: Apr 2007
Location: Tennessee
Posts: 986
Rep: 35 (Unique: 29)
Blink182!

!Bl1nk182

Batman1234$

KarenTookTheKids14*

[email protected]

Plasma (Gaming/Multimedia) (Windows 10 PRO):
Ryzen 1600 OC'd @ 4.0Ghz [AIR] ||| 8GB ADATA DDR4-2666 APG "GAMMIX" ||| 750W Antec PSU ||| Gigabyte GTX 1060 6GB ||| 240GB Sandisk SSD

PlasmaNix (Linux Workstation) (Lubuntu 18.04 LTS):
Athlon II X2 @ 3.0Ghz [STOCK / AIR] ||| 16GB Kingston HyperX DDR3-1600 ||| 500W Antec PSU ||| 74GB RAPTOR HDD ||| Adaptec CERC 1TB RAID1
Nechen is offline  
post #20 of 25 (permalink) Old 03-27-2019, 01:45 PM
Old to Overclock.net
 
xJumper's Avatar
 
Join Date: Jan 2008
Posts: 1,992
Rep: 109 (Unique: 96)
People think they're clever with passwords like that, yet they can be brute forced in like 10 seconds.

362436
(15 items)
CPU
AMD Ryzen 5 1600
Motherboard
Asus Prime X370-A AMD Ryzen AM4 DDR4
GPU
Gigabyte GeForce GTX 950
RAM
2x Corsair Valueselect 8GB 288 Pin DDR4 SDRAM DDR4 @ 2133
Hard Drive
Corsair Force LS 2.5" 120GB SATA III MLC SSD
Optical Drive
Lite-On 24X SATA DVD/RW Optical Drive
Power Supply
Corsair RM550x 550W 80 Plus Gold
Cooling
Noctua NH-L9A-AM4 Low-Profile
Case
Antec NSK4100 Steel ATX Mid Tower
Operating System
Mint 18.2 x64
Monitor
HP 24" LCD/LED 1920x1080
Keyboard
IBM PC-AT
Mouse
Logitech G5
Audio
Sennheiser HD650
Audio
Asus Essence STX II
▲ hide details ▲


xJumper is offline  
Reply

Quick Reply
Message:
Options

Register Now

In order to be able to post messages on the Overclock.net - An Overclocking Community forums, you must first register.
Please enter your desired user name, your email address and other required details in the form below.
User Name:
If you do not want to register, fill this field only and the name will be used as user name for your post.
Password
Please enter a password for your user account. Note that passwords are case-sensitive.
Password:
Confirm Password:
Email Address
Please enter a valid email address for yourself.
Email Address:

Log-in



Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Show Printable Version Show Printable Version
Email this Page Email this Page


Forum Jump: 

Posting Rules  
You may post new threads
You may post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off