Comments on the leaked events of user databases such as CSDN, Renren and multiplayer network

In fact, the disclosure of users of large Web sites is not particularly big news, and we occasionally see some of these types of news on the Internet, but, most of them are still irrelevant. But in the near future, there has been a spate of leaks of user data on several large websites, even on the web, and the ability to download user account data. And even more serious is that most of the user account data has been proved to be true and available, so this, we can no longer calm, thinking that within these sites we will more or less in peacetime life contact. So let's comment on the large web site where the user data leaked, and see if your account might be in it.

CSDN more than 6 million user information leaked

December 21, more than 6 million users registered mailboxes and passwords leaked, shocking is that in the CSDN user database leakage incident, the earliest in the Thunderbolt public to provide a database download unexpectedly is antivirus company Jinshan Poison PA employees. (Thunderbolt Id:hzqedison). It is reported that Hzqedison is Jinshan poison PA product Manager, he in December 21 to CSDN user database uploaded to the Thunder Fast biography (member share), the database download link immediately in the major hacker forum and QQ group spread quickly. The current online CSDN user database of the original file, all through the Hzqedison thunder fast spread. After the incident exposure, hzqedison through micro-blog position: see someone sent a csdn library file thunder download link, so did the next conversion (Thunder member sharing), has been deleted. He also specifically stated that the matter is personal behavior and Jinshan company has no relationship.

Second, more games 800W user data leakage

December 22, after the domestic well-known web site CSDN was exposed 6 million database leakage, online and more play network 8 million user data leakage. Tencent Micro-blog "Moonlight Blog" revealed: "More play network 8 million user leakage library, there are a large number of user names, clear text password, mailbox, part of the encryption password, authenticated, use the database username and password can log in more than normal login, so please register too much play network users, immediately modify their password. ”

Three, 7k7k small game 20 million user information leaks

On the morning of December 22, 7k7k's 2000W user data download link also appeared on the Internet. The news is not officially confirmed by 7k7k. But the users of the material but let us really difficult, in the end is to believe who?

Four: Renren 500W user Data leakage

Also occurred in the morning of 22nd, Renren's official action is the fastest, in the case of not knowing whether the information is true, immediately asked users to change the user password at the time of login, as far as possible to control the impact of data disclosure in the smallest extent. The following is the interface of Renren login, you need to change your password before you can log in.

The "Account leakage gate" event affected by the large web site there are 178.com, mop and so on, they have not issued an official statement on the disclosure, we do not know the authenticity of the temporary. The hacker group has even warned Renren that social networking sites such as happy Net will be the next target.

This kind of incident has undoubtedly sounded the alarm for us, how to protect our privacy and account security in front of the Internet? Now many users, in order to facilitate, generally use the mailbox account directly to the other site, and only use the same account and password. As a result, once one of them is leaked, the corresponding other website accounts will be destroyed, resulting in information leakage and loss can be imagined.

At the same time, the event to the large Web site operators a serious warning, next, must increase the user account security efforts. Hardware firewall, intrusion detection, authority audit, monitoring and management of multiple-pronged, to ensure the full range of server and database security. Never in the development of the road because of such a similar event in the gutter capsized in the boat, it is not worth it.

By this incident, I have to rethink, in this era of hackers rampant, the real name can also guarantee the privacy of users? "The front desk casual, backstage real name" the promotion of the policy may thus be affected by certain influence.