There's a damning writeup in Forbes today about the month long hack of Gawker. I haven't seen it mentioned here but thought it was worthwhile. Looks like they were thorougly owned with all user accounts dumped on the net, all their source code and passwords for external sites.

If you ever had an account on any of their network and password share your sites, you should change your passwords.

Edit: fixed typo. There needs to be an easier way to create new threads from mobiles :-) one that translates what I'm thinking to text.

A site has a page you can enter your email to check if it was in the db dump, http://www.slate.com/id/2277768/

Thanks for the slate link, looks like I'm safe.

Just checked my account and I'm safe. I can't believe they don't encrypt or hashed their users' password field in the DB.....

What the hell is gawker?

What the hell is gawker?

they are the tabloid journalism of the tech world.

Still, sad news for them that they got hacked. Constant reminder that vigilance is always required. I hope they publish some info about the attack vector, if they can find it.

We're talking about a site that didn't even hash passwords :-/ They deserve everything they get because that's just plain lazy.

Yeah on Triple J some wannabe Steve Farrelly from kotaku commented on the r18+ thing.

A media group that owns Kotaku, Gizmodo, Lifehacker, and a few others.

That thing says my account was among those leaked, but I never created an account, I always just used the login-free posting which just required your email address. I tried logging in anyway, but none of the username/password combos I used worked, which would suggest I never actually had an account.

Doesn't really matter though, I changed all of my important passwords about a month ago anyway.

"Correction, Dec. 13, 2010: The widget originally overstated your chances of having been compromised. If you left a comment but did not sign up for an account with Gawker, your data would not have been compromised."

Said my e-mail was not in the released data base, but no doubt is now in some other database.

I've never heard of gawker before either, heard about kotaku but don't have an account on either. Do they own any other sites? I've got multiple emails for different sites so I dunno which one(s) I should bother entering. I cbf checking all 7 or 8 of them.

A blog post from Jeff Atwood (Coding Horror) http://www.codinghorror.com/blog/2010/12/the-dirty-truth-about-web-passwords.html

Homer to Bart: "Your ideas are intriguing and I wish to subscribe to your newsletter."