Notice from McAfee regarding my e mail

P

peter912

Member
I received a notice from McAfee that my e mail password is being distributed on the internet and that I should change it. Alright so I have changed it, but how did they find out my password to begin with ? If they were able to find out my password then why won't they be able to obtain my new password ? So for what purpose do they do this ? What do they gain or are able to do if they know someone's e mail password ?
 
beers

beers

Moderator
Staff member
Chrome has a feature like this as well, depends how it was originally obtained. A lot of data breaches will expose user credentials which are then posted online or similar to https://wiki.skullsecurity.org/Passwords#Leaked_passwords . Those are generally a result of poor implementations of security such as an exposed surface area and not encrypting/hashing things like passwords as they're written to the database.

This is generally why people recommend using different credentials for different websites. If any of the ones you use are compromised and you use the same password, then people can just try using the wordlist against any other services (banks, email apps, social media, etc).
 
P

peter912

Member
beers said:
Chrome has a feature like this as well, depends how it was originally obtained. A lot of data breaches will expose user credentials which are then posted online or similar to https://wiki.skullsecurity.org/Passwords#Leaked_passwords . Those are generally a result of poor implementations of security such as an exposed surface area and not encrypting/hashing things like passwords as they're written to the database.

This is generally why people recommend using different credentials for different websites. If any of the ones you use are compromised and you use the same password, then people can just try using the wordlist against any other services (banks, email apps, social media, etc).
Click to expand...
So are you saying that the security is poor at the internet provider and they are able to hack in there and steal people's e mail passwords ? So even if one changes their password they can just obtain it by hacking in again ? I still can't understand how charges were made on a credit card that I never use anywhere ? If the charges would have been made on the card that I do use everywhere, then I wouldn't be surprised but they were made on the card that I have never used. If it has never been used then how did they get a hold of it's number ? Also it was being used to make online purchases in Australia and I live in Canada. The Bank alerted me on the second purchase and issued me a new card and I was not responsible for the purchases made which totaled over $1000.
 
You must log in or register to reply here.
Top