ngga dapet emailnya, apa ikutan ganti password juga ya ? On Thursday, March 27, 2014 6:32:42 AM UTC+7, AMER wrote: > > > https://plus.google.com/app/basic/stream/z125cnkbjk2ryrr5204cgztg1szqdz45hpo0k > > *The following communication was sent via email to all the users whose > data is involved in the leak. Keep reading after the email for more > information.* > > "Our Security Team recently discovered and blocked suspicious activity on > Cerberus servers. The investigation found no evidence that your account was > in any way accessed or compromised. > > However, the attacker(s) were able to gain access to usernames and > encrypted passwords for a subset of our users. No other personal data > (emails, device information, etc.) has been accessed. > > While the accessed passwords are encrypted, as an extra precaution we have > immediately secured these accounts invalidating the current passwords. > > Please create a new password by signing into your account at > www.cerberusapp.com and selecting the "Forgot password?" option, or go > directly here: https > <https://www.cerberusapp.com/forgotpwd.php>://<https://www.cerberusapp.com/forgotpwd.php> > www.cerberusapp.com > <https://www.cerberusapp.com/forgotpwd.php>/<https://www.cerberusapp.com/forgotpwd.php> > forgotpwd.php <https://www.cerberusapp.com/forgotpwd.php> . Submit the > form and you will receive an email with further instructions to set your > new password. > > After you reset the password, you can verify that no unauthorized commands > have been sent to your Android device. Open Cerberus on your device, log in > and select the "View Cerberus log" option at the bottom of the app settings. > > We sincerely apologize for the inconvenience of having to change your > password, we take security of our users very seriously and are constantly > working to improve it. > > If you have any questions, please do not hesitate to contact Cerberus > Support at [email protected] <javascript:> > > The Cerberus Team" > > Here are some more details on the incident: > > - The database was not accessed, password are hashed and uniquely salted > multiple times there, and we will migrate to bcrypt soon > - The attacker was able to access a legacy log file that contained > usernames and SHA-1 hashes of passwords, that was generated by the app > logins between March 1 and March 21 > - We have then deleted the log file, stopped the legacy logging procedure, > invalidated the passwords for the accounts present into the log and > notified the users involved > - A total of 96564 accounts had their password reset and have been > notified with the email communication above. *These accounts have not > been accessed in any way.* > - A total of 3 accounts were accessed by the attackers, before we blocked > their activity and reset the passwords. Those 3 users were notified before > the others with a different email communication. > - As of March 26, none of the data obtained by the attacker was released > publicly, that we know of. > > We are working closely with law enforcement on this matter, so > unfortunately we can’t share any more details at the moment. We will update > this post when we have any news. > > *If you received the email communication and use the same > username/password combination for other services, we strongly recommend > that you change the password for those services too.* > > We are deeply sorry for what happened. We have already contacted a > security firm and in the next weeks we will do a thorough code audit and > security assessment of our infrastructure and procedures. > > We are a small team (3 people) and are trying our best to provide a secure > service that you can trust to protect your devices and help you recover > them if they are lost or stolen. > > ☀Android 4.4.2 KitKat @ Google neXus4™☀ >
-- ========== Pre-order GALAXY S5 dari Telkomsel 19 Maret – 5 April 2014 Info Lengkap >> tsel.me/galaxys5 -------------------- ID-Android on YouTube https://www.youtube.com/watch?v=0u81L8Qpy5A -------------------- Aturan Umum ID-ANDROID >> http://goo.gl/NfzSGB Join Forum ID-ANDROID >> http://forum.android.or.id ========== --- Anda menerima pesan ini karena Anda berlangganan grup "[id-android] Indonesian Android Community " dari Google Grup. Untuk berhenti berlangganan dan berhenti menerima email dari grup ini, kirim email ke [email protected]. Kunjungi grup ini di http://groups.google.com/group/id-android.
