CSDN Leak Door

Some netizens said, today there are hackers on the Internet to open a well-known programmer Web site csdn user database, up to 600多万个 clear-text registered mailbox account and password exposure and leakage, become a major cyber security incident in China this year.

This "csdn-Chinese it community-6 million. rar" file has been spread online, file size 107366K, after downloading verification, it does record a large number of CSDN mailboxes and passwords, and are clear.

The most incredible thing about the whole event is that a large web site, such as CSDN, with the programmer and development as the core, actually uses plaintext to store passwords, causing huge numbers of users ' account information including passwords to be leaked directly, which is the most incredible place, a little bit of programming programmers know that for the sake of user security, Should be in the database to save the user password encryption information, the simplest MD5 (password + random string), generally similar to ucenter such a forum will also MD5 this information again, so that hackers even download the database, user password cracking is not an easy thing.

CSDN Online part-time work website 6 million user information leakage

Users to download the leaked database files, containing a large number of account and password information

CSDN official Weibo issued a statement saying:

For the CSDN user account password database is disclosed, after a preliminary analysis, the library 2009 CSDN as a backup, due to the lack of identification of the cause was leaked, especially to all users affected by this deeply apologize. At present, CSDN has reported to the public security organs, the public security organs are also investigating the relevant clues. Csdn existing 20 million registered users of the account password database has all taken the ciphertext protection and backup.

According to Csdn Fanke said, Csdn before April 2009 is plaintext save password, so leaked out csdn clear account data is September 2010 data, leakage reason is unknown.

After that, CSDN also posted a public apology letter on the homepage.

CSDN website 6 million user information leakage

CSDN on the homepage to announce the apology letter

In this case, CSDN is also a victim, its reputation has been severely damaged, authority will be questioned, its "programmer" magazine will also be adversely affected, in the programmer's reputation declined.

Of course, the biggest victims of the event are the 6 million CSDN users in the file, many of whom use the same mailbox and password to register for Web services, and if they use the same password to register for the Internet, their network services will face serious threats and personal property may be subject to loss. Email may be compromised and personal privacy may be compromised.

Therefore, I suggest that once registered csdn how to brush the Q currency user, immediately modify the csdn password, if the password is also used in other sites, please log on to other sites as soon as possible to change the password. If possible, make sure to modify the internet banking, e-mail and other important website password to ensure the security of funds to prevent privacy leaks.

This CSDN website password leaks, also exposes the so-called microblog real-name real-name the biggest hidden trouble, the more personal information you enter on the website, the more threat to you, even some very well-known big website. Cyber security is no small matter, and this incident is also a big irony to those advocating real-name real-name.

In addition, the user of the message leaked, spammers crazy, out of thin air to get 6 million programmers e-mail address, estimated after the ad mail will be bombing the past.

CSDN Leak Door