topbanner_forum
  *

avatar image

Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
  • Thursday March 28, 2024, 9:10 am
  • Proudly celebrating 15+ years online.
  • Donate now to become a lifetime supporting member of the site and get a non-expiring license key for all of our programs.
  • donate

Author Topic: Security breach at Kickstarter  (Read 3487 times)

lanux128

  • Global Moderator
  • Joined in 2005
  • *****
  • Posts: 6,277
    • View Profile
    • Donate to Member
Security breach at Kickstarter
« on: February 15, 2014, 08:54 PM »
There has been a security breach at Kickstarter.com and all users are advised to change their passwords immediately.



https://www.kickstar...rter-security-notice

rgdot

  • Supporting Member
  • Joined in 2009
  • **
  • Posts: 2,192
    • View Profile
    • Donate to Member
Re: Security breach at Kickstarter
« Reply #1 on: February 15, 2014, 10:02 PM »
Thanks for posting this.

I have a serious (may be dumb) question. We often hear about credit card/password info was not breached. what about sites like this that ask for name and address (to ship stuff). Isn't name and address (as a combo) may be even more valuable than a card that can be cancelled and/or has zero liability if used maliciously?

wraith808

  • Supporting Member
  • Joined in 2006
  • **
  • default avatar
  • Posts: 11,186
    • View Profile
    • Donate to Member
Re: Security breach at Kickstarter
« Reply #2 on: February 15, 2014, 11:02 PM »
Not really.  Yes, name and address are valuable information for scammers, but only in combination with other things- and there are easier ways to get those than breaching a website.

rgdot

  • Supporting Member
  • Joined in 2009
  • **
  • Posts: 2,192
    • View Profile
    • Donate to Member
Re: Security breach at Kickstarter
« Reply #3 on: February 16, 2014, 09:03 AM »
Good point about 'easier ways', thanks

TaoPhoenix

  • Supporting Member
  • Joined in 2011
  • **
  • Posts: 4,642
    • View Profile
    • Donate to Member
Re: Security breach at Kickstarter
« Reply #4 on: February 16, 2014, 09:54 AM »
Not really.  Yes, name and address are valuable information for scammers, but only in combination with other things- and there are easier ways to get those than breaching a website.

Maybe but the disclosure included five items - Usernames, emails, mail addresses, phone numbers, and encrypted passwords.

That's a good haul, on the order of "it only takes three more things" to ruin someone.


wraith808

  • Supporting Member
  • Joined in 2006
  • **
  • default avatar
  • Posts: 11,186
    • View Profile
    • Donate to Member
Re: Security breach at Kickstarter
« Reply #5 on: February 16, 2014, 11:12 AM »
The usernames and emails aren't really going to be all that useful in most identity scams.  Perhaps phishing, but then again, with that, you have to be complicit once again.  The other things that you need are the big ones that aren't vastly public knowledge are the ones that you need to perpetrate such things.