this post was submitted on 14 Jan 2025
147 points (95.7% liked)

Privacy

32796 readers
1458 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS
 
you are viewing a single comment's thread
view the rest of the comments
[–] drspod@lemmy.ml 134 points 4 days ago (2 children)

This breach is worse than just a website's database being leaked. These are info-stealer malware logs. Meaning that you had malware on one of your devices that recorded you typing your credentials into websites and then the logs of that malware were publicly leaked.

Before changing all of your passwords (and setting up a password manager if you don't already use one) you need to identify which of your devices was compromised and wipe it.

If you change all your passwords from the compromised device then the malware will just record all of your new passwords.

[–] MrPoopbutt@lemmy.world 19 points 3 days ago (2 children)

How would one identify which device was compromised?

[–] tetris11@lemmy.ml 13 points 2 days ago (3 children)

Turn off your computer and make sure it powers down. Toss it in a 43-foot hole in the ground. Bury it completely rocks and boulders should be fine. Then burn any clothes you may have worn any time you were onliiiine

[–] EntirelyUnlovable@lemmy.world 11 points 2 days ago

Wait a sec my grandmother is calling me about some pictures I apparently sent her

[–] Jollyllama@lemmy.world 7 points 2 days ago

Instructions unclear, I don't speak Swahili

[–] Sebo@lemmy.one 2 points 2 days ago

That advice is a bit too weird;)

[–] stinky@redlemmy.com 17 points 3 days ago

Assume all of them are infected.

[–] Cycle0861@lemmy.world 4 points 3 days ago (2 children)

Which password manager is good? I use Bitwarden but it would take forever to change all my passwords inside of it

[–] arthur@lemmy.zip 9 points 3 days ago (2 children)

Bitwarden have a good balance of security, price and convenience. If you want more control and less convenience, KeePass.

[–] fine_sandy_bottom@discuss.tchncs.de 5 points 2 days ago* (last edited 2 days ago) (1 children)

Keepassxc

The best IMO because it's just a client you install on a device which reads an encrypted data file you can sync how you like.

This way it's not a hoard like lastpass or bitwarden.

[–] arthur@lemmy.zip 0 points 2 days ago (1 children)
[–] Cethin@lemmy.zip 2 points 2 days ago (1 children)

Personally, I use KeePassDX for my android client, but either works. I use Syncthing to sync changes between devices, though I think the android version of that stopped being supported a few months back, but it still works fine for now.

[–] med@sh.itjust.works 1 points 2 days ago

I am doing the same, all I need is keepassdx to support passkeys now

[–] thegreatgarbo@lemmy.world 1 points 2 days ago (2 children)
[–] arthur@lemmy.zip 2 points 2 days ago

Last time I used it was very convenient, but the price was too high for me. Besides that, I bought 1pass when was possible to buy once and have it forever, since then, they made increasingly harder to access it if you bought instead of use as a paid service. That's why I made the change to KeePass. The only thing that 1pass offers that could justify their business model as a service is sync on multiple devices, and bitwarden does that as well. KeePass don't, but you can make it happen with free Dropbox for example.

[–] italics2@lemmy.world 1 points 2 days ago

I had an internship a couple years back at a web development startup that used it. Seemed to work just fine.

[–] AtariDump@lemmy.world 2 points 2 days ago