The scraped data of 2.6 million DuoLingo users was leaked on a hacking forum, allowing threat actors to conduct targeted phishing attacks using the exposed information.

  • demlet@lemmy.world
    link
    fedilink
    English
    arrow-up
    17
    ·
    1 year ago

    Hmm, a single point of access for every password you have? I don’t see the problem…

    • SleveMcDichael@programming.dev
      link
      fedilink
      English
      arrow-up
      20
      ·
      edit-2
      1 year ago

      The thing is the average person either can’t or can’t be bothered to remember even a dozen actually secure passwords, so they fall back to a couple of simple derivations of a common password, meaning each and every site a user signs up on represents an additional single point of failure.

    • Chriskmee@lemm.ee
      link
      fedilink
      English
      arrow-up
      9
      ·
      1 year ago

      Lucky until we get actual quantum computing, it’s not worth the years on a supercomputer to crack a single stolen set of encrypted passwords.