LastPass, the password storage service, has just revealed that customer information was accessed during the hack of their data that occurred at the end of August 2022. The data was stored with a 3rd-party cloud storage provider. Previously they had said that it was “limited to the LastPass Development environment in which some of our source code and technical information was taken.”

Insacart is denying a data breach of more than 250,000 customer records, and is instead blaming customers for their info being for sale on the dark web.

DoorDash has just today announced that they discovered a data breach earlier this month (while the Door Dash data breach occurred in May of 2019, they only just discovered it this month). Here is the information you need about the DoorDash data breach.

Last summer Animoto was the target of a data breach, in their posted-but-not-emailed announcement of the breach Animoto assured users that any compromised passwords had been “hashed and salted”. And yet, blackmail spammers now have full Animoto passwords.

Hyatt Hotels, owners of among others the Hyatt Regency brand, has quietly announced that their Hyatt Gold Passport system has been hacked.

Outlets such as the Daily Dot and Life Hacker are reporting the leaking of five million Gmail addresses and passwords on a Russian Bitcoin forum.

The Pony Botnet Controller virus – which may be on your computer – has stolen millions of Facebook passwords, Google passwords, Twitter passwords and Yahoo passwords, along with log-in credentials from email accounts and even FTP accounts. All told more than 2 million account usernames and passwords were stolen.

It seems like every week brings news of a new hacking, which in turn means that usernames, email addresses, and passwords are constantly being posted online by hackers, and this inevitably leads to a simple question: when should you change your password? Or, to frame the question in a slightly different way, how often should you change your password? In general, you should change your password about as frequently as you can tolerate changing your password. As long as you can keep track of your various passwords, there isn’t any disadvantage associated with changing it (besides the fact that changing your password can be a bit of a pain). Now, however, there is at least one definite answer to the question posed above: you should change your password when ShouldIChangeMyPassword.com tells you to.

Here’s the skinny: LinkedIn experienced a password breach today – 6.5 million passwords were leaked. Now, according to reports, LinkedIn has 160 million users, so that’s not even 5% of the total number of LinkedIn passwords that could have been compromised, but its certainly enough that you should go to LinkedIn right now and change your password. Here’s how.

We have often taken flack for saying that children have no business being on Facebook (or the Internet in general), and that parents really don’t understand the dangers of letting your child on the Internet without adequate supervision and precautions. Now a group of police officers is saying the same thing, going so far as to say that you need to have your child’s Facebook password, and monitor their activity on Facebook – even if it means stealing their Facebook password to do it.

It has all the makings of a classic western: trouble brewing between two factions in Arizona over disputed territory, the law unable to head the confrontation off, people taking matters into their own hands, and it all culiminating in the inevitable showdown. Only in this case, the dispute is over computer territory, one of the factions is the law, and the other side is the county itself!

Montana, once known as “Big Sky” state, just became the “Big Spy” state, with the revelation that those applying for jobs with Monatana’s City of Bozeman are required to provide their username and password for any social networking site to which they belong, including Facebook, Twitter, MySpace, Google, Yahoo, and others.

Starting tomorrow, January 1, 2009, sex offenders in Georgia will be required by law to provide the state with all of their Internet usernames, email addresses, screen names, and passwords. Georgia joins Utah in this requirement.