• News
  • Tech

Hackers break into Reddit's systems

Hackers break into Reddit's systems

A hacker broke into Reddit's employee computer network in June, gaining access to some of its user data, the company announced Wednesday.

The company's chief technology officer, Christopher Slowe, said: "If your account credentials were affected and there's a chance the credentials relate to the password you're now using on Reddit, we'll make you reset your Reddit account password".

Slowe said Reddit learned on June 19 an attacker compromised a few of its employees' accounts between June 14 and June 18. Reddit also says it is has taken measures to ensure, going forward, that access to Reddit's systems are more secure with features such as additional encryption, enhanced logging, and token-based two-factor authentication. The hacker got read-only access to "some systems that contained backup data, source code, and other logs".

The company is sending a message to affected users and resetting passwords on accounts where the credentials might still be valid.

If you don't have two-factor authentication, it's a good idea to use it on your most important accounts, like Facebook or your bank, which can usually be activated in the settings page.

The fact the attackers also gained access to some Reddit source code nearly feels like a small loss even though that is anything but the case.

The site said it was messaging affected users.

There are two parts to this story - who is affected and the weakness the company says led to the breach itself. If you were a Reddit early adopter, you need to take the usual set of post-compromise security precautions.

All Reddit data from 2007 and before, including account credentials and email addresses.

Reddit has revealed that it was recently hacked.

One Reddit user noted that it's possible the hacker could piece together a Redditor's username from looking at their email address, too.

Otherwise, Reddit advises you to search your email inbox for emails from noreply@redditmail.com between June 3 and June 17, 2018. Reddit said if you don't have an email address associated with your account or your "email digests" user preference was unchecked during June 3-17, 2018 you're not affected. After a key is enrolled for 2FA at a particular site that supports keys, the user no longer needs to enter their password (unless they try to log in from a new device).

Koby Kilimnik, security researcher at Imperva, adds: "If you don't like spam emails, you might also want to start using a different email account since those leaked emails will probably find their way into some spammer's database".

Security and data breaches have pretty much become the norm for tech companies as of late. What's interesting about the incident is that it showcases once again why relying on mobile text messages (SMS) for two-factor authentication (2FA) can lull companies and end users into a false sense of security.

Leave Your Comment

Leave Your Comment


Latest News

Breaking News



Recommended

Bank of England raises interest rates to 0.75%

The monetary policy committee of a country uses the reverse repo rate as a tool to control the money supply in the country. An RBI repo rate hike usually sees commercial banks hike their respective interest rates on home, auto and other loans.

Foreign Influence Investigations Spanning U.S. to Confront Election Threat

He added that while Russian Federation has attempted to influence campaigns in the past, "they stepped up their game in 2016". All of them, except for Nielsen, specifically mentioned Russia's past and future- intended interference in US elections .

Israel and Jordan kill Islamic State fighters flushed out of Syria

He added that "conditions have been created for the resumption of the activities of United Nations peacekeeping forces in the Golan Heights".

Urban Meyer's Bacon is Cooked

Courtney Smith can explain better than most why Urban Meyer and The Ohio State University are under the spotlight. She also told McMurphy that Shelley said she would have to tell Urban and Courtney encouraged her to do so.

John Kelly expected to stay through 2020

Trump's refusal to condemn the hate groups responsible for the violence "threw [Kelly] for a loop", according to The Daily Beast. Speculation about his exit has flared for months, amid reports that Trump had cooled on the retired four-star general.

Tax Free Weekend in Missouri Set for August 3-5

Coupons and discounts available for items under the tax-free list may still be applied to reduce the item's sales price. The Ohio Senate unanimously approved a bill earlier this year that made the three-day sales tax holiday permanent.

Chipotle shuts OH restaurant after reports of illness

The burrito chain briefly closed down one of its restaurants in Powell, Ohio Monday after a number of customers became sick. The local health department, called the Delaware General Health District , is investigating the possible illness outbreak.

Virat Kohli ‘mic drop’ celebration makes for entertaining cricket, says Joe Root

India benefited from the help of a pesky pigeon to spark a massive England collapse on the opening day of their Test series. Jennings' dismissal left England at 2-98 - a foundation the hosts seemed set to make the most of, cruising to 3-216.

After shooting home intruder, Vietnam vet killed by responding officer

A Colorado police officer fatally shot a man minutes after the man killed someone who broke into his home, authorities said. Once he entered the home, the officer found "a very chaotic and violent scene", according to the statement .

YouTube dark mode comes to Android at long last

It's great for offering a more cinematic user experience, as well as cutting down the glare from light reflection on the screen. YouTube has finally given Android users a "dark mode" option , four months after the same feature rolled out on iOS devices.