LogFAQs > #922583600

LurkerFAQs, Active DB, DB1, DB2, DB3, DB4, Database 5 ( 01.01.2019-12.31.2019 ), DB6, DB7, DB8, DB9, DB10, DB11, DB12, Clear

Topic List	Page List: 1
Topic	Anyone else's Twitch account get stolen?
Reg 05/30/19 7:37:34 PM #17:	paperwarior posted... It doesn't seem all that secure to me to put all my passwords behind one login, though. Maybe the password managers are very secure, but it's hard to trust that. There are password managers that aren't run by somebody else/don't use cloud storage (Unless you combine them with something like Dropbox). For example, Keepass (https://keepass.info/ and the one I've been using for about ten years) creates a local file that only goes onto the internet if you want it to. That said, skullbone posted... Yep mine got hacked but luckily I was able to still login through Facebook authentication. Apparently the twitch app on Samsung TVs wasn't official and it was actually a Russian app where they were taking account info. The app has been removed from TVs but I'm assuming that's where most of the hacking came from. How it even existed for as long as it did is absolutely crazy. I hadn't heard this was the issue (The times I have heard of twitch accounts specifically getting stolen recently were all cases of reused passwords from other hacks), but in this case unique passwords and password managers really wouldn't save you. So if you got yours stolen through this, uh, "oops". But yes, everybody should be using password managers of some sort, and even if this was a well-executed phishing case, it still highlights the dangers of password reuse. A physical notebook is ok when combined with some way to generate decently strong passwords, but it obviously has its own issues w.r.t physical security. Also, yes, 2FA on anything and everything that supports it. That's possibly even more important because it's what would've saved you here. <cite>Reg posted [p:922583600] in Anyone els... [t:77750360]...</cite> <quote><cite>paperwarior posted...</cite> <quote>It doesn't seem all that secure to me to put all my passwords behind one login, though. Maybe the password managers are very secure, but it's hard to trust that.</quote> There are password managers that aren't run by somebody else/don't use cloud storage (Unless you combine them with something like Dropbox). For example, Keepass (https://keepass.info/ and the one I've been using for about ten years) creates a local file that only goes onto the internet if you want it to. That said, <cite>skullbone posted...</cite> <quote>Yep mine got hacked but luckily I was able to still login through Facebook authentication. Apparently the twitch app on Samsung TVs wasn't official and it was actually a Russian app where they were taking account info. The app has been removed from TVs but I'm assuming that's where most of the hacking came from. How it even existed for as long as it did is absolutely crazy.</quote> I hadn't heard this was the issue (The times I have heard of twitch accounts specifically getting stolen recently were all cases of reused passwords from other hacks), but in this case unique passwords and password managers really wouldn't save you. So if you got yours stolen through this, uh, "oops". But yes, everybody should be using password managers of some sort, and even if this was a well-executed phishing case, it still highlights the dangers of password reuse. A physical notebook is ok when combined with some way to generate decently strong passwords, but it obviously has its own issues w.r.t physical security. Also, yes, 2FA on anything and everything that supports it. That's possibly even more important because it's what would've saved you here.</quote> ... Copied to Clipboard!
Topic List	Page List: 1