Now Playing Tracks

2 million Facebook, Gmail and Twitter passwords stolen in massive hack

Please check your computer for malware!

The massive data breach was a result of keylogging software maliciously installed on an untold number of computers around the world, researchers at cybersecurity firm Trustwave said. The virus was capturing log-in credentials for key websites over the past month and sending those usernames and passwords to a server controlled by the hackers.

On Nov. 24, Trustwave researchers tracked that server, located in the Netherlands. They discovered compromised credentials for more than 93,000 websites, including:

  • 318,000 Facebook (FBFortune 500) accounts
  • 70,000 Gmail, Google+ and YouTube accounts
  • 60,000 Yahoo (YHOOFortune 500) accounts
  • 22,000 Twitter (TWTR) accounts
  • 9,000 Odnoklassniki accounts (a Russian social network)
  • 8,000 ADP (ADPFortune 500) accounts (ADP says it counted 2,400)
  • 8,000 LinkedIn (LNKDaccounts

Trustwave notified these companies of the breach. They posted their findings publicly on Tuesday.

ADP, Facebook, LinkedIn and Twitter told CNNMoney they have notified and reset passwords for compromised users. Google (GOOGFortune 500) declined to comment. Yahoo did not provide immediate responses.

LinkedIn's new Intro app is a nightmare for email security and privacy, say researchers

Don’t do it!

If you’re at all concerned about the privacy of your emails, here’s a tip: Don’t use LinkedIn Intro.

Introduced earlier this week, Intro is aimed at giving users a complete profile of the people they email. But in order to do that, the app needs unfettered access to users’ email accounts — which introduces a host of security and privacy issues.

LinkedIn 'Intro'duces Insecurity - Bishop Fox

Epic trust FAIL. LinkedIn becoming the new Facebook!

LinkedIn released a new product today called Intro.  They call it “doing the impossible”, but some might call it “hijacking email”.  Why do we say this?  Consider the following:

Intro reconfigures your iOS device (e.g. iPhone, iPad) so that all of your emails go through LinkedIn’s servers. You read that right. Once you install the Intro app, all of your emails, both sent and received, are transmitted via LinkedIn’s servers. LinkedIn is forcing all your IMAP and SMTP data through their own servers and then analyzing and scraping your emails for data pertaining to…whatever they feel like.

“But that sounds like a man-in-the-middle attack!” I hear you cry. Yes. Yes it does. Because it is. That’s exactly what it is. And this is a bad thing. If your employees are checking their company email, it’s an especially bad thing.

brymaster Hacker News:

People with technical, ethical or privacy concerns are just as relevant to the discussion. LinkedIn already has a shady history in terms of unauthorized data slurping, privacy and handling of users. No one has to swallow what they’re offering now as altruistic if they don’t want to.

Plenty of concerns indeed…

6.5 Million LinkedIn Password Hashes Leaked

https://news.ycombinator.com/item?id=4073309

LinkedIn sued by users who say it hacked their e-mail accounts

https://news.ycombinator.com/item?id=6425444

Your iPhone calendar isn’t private—at least if you use the LinkedIn app

http://arstechnica.com/apple/2012/06/your-iphone-calendar-is…

LinkedIn: The Creepiest Social Network

https://news.ycombinator.com/item?id=5680680

LinkedIn opts 100 million users into sharing information with ads

https://news.ycombinator.com/item?id=2872030

LinkedIn is Evil

https://news.ycombinator.com/item?id=220138

LinkedIn was also pulling down your contacts/address book through that iOS flaw just like Path and several other apps were at the time.

Bruce Schneier

Don’t make the mistake of thinking you’re [the] customer, you’re not – you’re the product.

The Play Framework at LinkedIn: Productivity and Performance at Scale

Jim does an excellent job by actually writing and executing code during the presentation. It also helps when your IDE has been setup properly.

He shows no love for RoR unless you’re in a single developer environment.

♥  Play’s non-blocking I/O - promise ;)

"We’ve found that the Play Framework is one of the few frameworks that is able to maintain the delicate balance of performance, reliability, and developer productivity. In the Java and Scala world, nothing even comes close." 

That’s what Yevgeniy (Jim) Brikman, the lead developer binging the Play Framework to LinkedIn, says in his description of the talk he gave at JaxConf 2013. Check out the video of that presentation, and find out how LinkedIn is using the Play Framework to build front-end and back-end services at massive scale.

** Follow along with the slides: http://mrkn.co/9mgzf

Just how much value do you represent to these companies? Backupify, a cloud data backup service, decided to do some quick math. The infographic below gives you a glimpse. Dividing the estimated valuation of the company by the number of users tells you, roughly, how much value each user contributes to the company’s value.

  • Path: $12.50 per user
  • Instagram: $18.52
  • Yelp: $21.21
  • Pinterest: $28.09
  • Foursquare: $40.00
  • Twitter: $71.43
  • Dropbox: $80.00
  • LinkedIn: $104.46
  • Facebook: $118.34

But it’s the value of each individual status update that’s especially interesting. To get this number, Backupify took each company’s estimated annual revenue and divided it by the number of items of content. Here are the results:

  • Tweet: $0.001
  • Facebook share: $0.024
  • LinkedIn search: $0.124
  • FourSquare check-in: $0.40
  • Path update: $0.50
  • Yelp review: $9.13

(Source: venturebeat.com)

To Tumblr, Love Pixel Union