Hi, this is Wayne again with a topic “Your Password Is Probably Leaked”.
Having your personal accounts, hacked can range from embarrassing to downright Panic inducing, but imagine how awful it would be to lose data worth billions of dollars. This was exactly what happened to the United States Securities and Exchange commissions, Edgar system, which has been called the Fort Knox of America’s financial sector. Edgar is basically a big database where companies file their financial statements, so the government Regulators can then have a look at the books. Although Edgar records are public, submissions aren’t made public immediately, meaning that if someone got their hands on statements early, they could use that information. For Insider training on the stock market and that’s exactly what happened: in 2016., an international hacker Network took advantage of Edgar’s vulnerabilities by sending phishing emails to SEC employees and then used information that had not yet been made public to make over four million dollars in profits Off of Early Trades, but while the hackers were caught and forced to pay restitution, the hack exposed some serious issues with the SEC systems, including a lack of full encryption and misconfigured firewalls, not exactly confidence inspiring for the massive Banks and other companies that assumed that the Federal government could keep their information safe.
It was especially embarrassing considering that the SEC took months to discover the hack, even after they had been worn for years, that their security simply wasn’t good enough yikes. But while the SEC might be forgiven a little bit for you know not being super familiar with. Cyber security, we can’t say the same for LastPass one of the leading password Management Services, although the nature of their business makes them a prime target for cyber attacks. Lastpass had a breach in 2022 that went far beyond anything they had faced before and we’ll tell you all about it right after we thank epidemic sound for sponsoring this video, sometimes you just might be faced with finishing a project on time with a professional touch epidemic. Sound provides high quality, professionally produced music and sound effects for you to use. They provide licenses to cover your video production through their personal and Commercial plans and with epidemics, ear feature you can select specific parts of a track to find similar music in their catalog.
This feature is our editor’s favorite using it can save you a lot of time searching through the music library. Editors require options for editing and epidemic, provides just that all tracks and epidemic are downloadable in stems giving editors greater creative freedom so sign up today, using the link in the description for a free 30-day trial. Hackers broke into a LastPass Engineers laptop which helped them conduct a second attack that then led to the theft of encrypted passwords, as well as quite a bit of customer information that, for some reason, LastPass was just storing as plain text instead of encrypted data. This plain text Data included URLs of the websites that customers were storing passwords for meaning that hackers could decide exactly which passwords to crack first, as banking sites would be more valuable to them than say your password for fanfiction.net, probably and somewhat similarly, to the SEC.
Lastpass. Had previously been criticized for not storing all of its information in an encrypted format, even though LastPass stated that properly implemented passwords would take millions of years to properly Brute Force. What made the situation positively silly was that this attack occurred through an engineer’s home computer, which was targeted because of a vulnerability in Plex of all things which the engineer also had installed. This is why you don’t mix business with pleasure, but as bad as the last pass breach was.
It still doesn’t quite compare to the incident in 2021 that ended up being the biggest password breach of all time. Rocky 2021 leaked over 8 billion different passwords, so well over one password for every human on earth. It didn’t appear that the passwords were the product of one single attack.
Rather, the leak was a huge compilation of passwords that were exposed due to multiple earlier breaches. All these passwords were combined into a single text file around a hundred gigabytes in size. Now, although the passwords themselves were already floating around on the dark web, having so many in one simple plain text file would make it very easy for attackers to use them for dictionary attacks where software just automatically goes through a list of all the passwords until they Find one that hits this is a great example of why, even if you have a lengthy difficult to guess password, you should be using two-factor, authentication anytime.
It’S offered and remember that replacing an S with a dollar sign is neither secure nor clever, thanks for watching guys like dislike check out some of our other videos comment with video suggestions down below and don’t forget to subscribe and follow. .