Use Same Account Name and Password on Every Service?{8}


The article I read this week is “One Of The 32 Million With A RockYou Account? You May Want To Change All Your Passwords. Like Now.” by MG Siegler. Title of this article caught my attention immediately. The author has raised up issue that people using same ID and Password on most of the service they signed up for. On December 2009, RockYou’s (the social network app maker) database got attacked. Hackers got around 32 million accounts’ full list of unprotected plain text passwords on their hand. Hackers used SQL injection method to attack RockYou database, it is one of the popular methods to attack databases. Hackers even posted sample of what they found.

This article is very relevant because we just started to learn SQL statements. SQL injection is a one of the popular method to attack databases. SQL injection is basically means hackers get what they want by injecting their statement into the system. As we just started learn SQL, we also need to consider about SQL data security as we writing our SQL statements. Most of SQL injections can be prevent by using prepared statement.

Fortunately I am not a user of any app made by RockYou, Zoo World, Zoo World2 and Bingo are their most popular APPs. I have seen many of my friends play their games(Unfortunately their ID probably got hacked). We can prevent chain hackings by using slight different password on every services. Although it is hard to remember everything, but security comes first!

Citation:
MG, S (December 14th, 2009) One Of The 32 Million With A RockYou Account? You May Want To Change All Your Passwords. Like Now. http://techcrunch.com/2009/12/14/rockyou-hacked/