Adobe数据库里的密码居然也是明文?
前天,收到一封Evernote的提醒email:
Your Adobe password may have been compromised, please don’t reuse it
There were published reports recently of a security breach at Adobe that may have exposed private information, including Adobe passwords, email addresses and passwords hints of millions of users. The list of compromised Adobe accounts has been uploaded to the web. We compared this list to our user email addresses and found that the email address you used to register for an Evernote account is on the list of exposed Adobe accounts.
Evernote has not been compromised and is not connected to this incident, but if you used the same password for Adobe and Evernote, then you should change your Evernote password now.
尼玛。。。
Adobe居然也用明文记密码。。。
为毛密码泄漏了居然还不给我发个邮件提醒下?从业良心呢?
跟人家Evernote学学好不好?
好在这个网站的密码已经是我几年前的二级密码,就是那种不重要的东西用的密码。
而且幸亏因为CSDN泄漏密码,早把各级密码全部换过了。
前几天139的邮箱被人登录了,而且登录之后马上关闭短信提醒。。。
差点就以为是139的密码被盗了,幸亏139是咱几年前注册的,所以密码和adobe的一样。
而且咱不用那个邮箱,所以换密码的时候就忘了给他也换个密码。
好吧,谁tm都不能信,老外也没从业良心,还是常改密码吧。
Update:
感谢Nick童鞋提供的泄漏查询地址:http://adobe.cynic.al/
actually I got one:
but I forgot to reset it...
after reading your post, I tried to reset it
and it says "The provided email address could not be matched to an account on file. Please try again."
I guess they probably banned those accounts that didn't response properly?!
and for your convenience, you can check if you're in the list at:
http://adobe.cynic.al
多谢楼上,我去查了一下,还真是“ifyr@mail.com was found. You need to change your passwords now”。
貌似在国外“didn’t store the passwords securely”不会被人咒骂么。。。
呃。。。。。。太。。。。。。无语了
@v 其实我看了一下@nick 提供的查询链接,Adobe存的不是明文,是加密过的密码,不过貌似加密方式是可逆的,所以会被破解。
使用可逆方式加密,跟存明文差别不大了,所以就没改文章里的说法。