Google Password Leaks
Friends of ECHO,
Recently over 5 million Google account credentials were leaked to the internet. This has a lot of people worrying, and we’d like to take a moment to address any concerns you may have.
Google’s response to this incident has been to point out that less than 2 percent of these credentials would actually work, and that this leakage is not the result of a security breach of Google’s systems. The response further downplays the significance of this event by noting that Google employs other means of determining a “suspicious” login is taking place, and has gone on to require affected account holders to change their passwords.
So, how concerned should you be about this news? That probably depends on how serious you are about using strong, unique passwords on the accounts you access over the internet. Feel free to reference our recent blog post on reigning in password insanity without sacrificing security. It certainly would be a good idea to turn on two-factor authentication on your Google account, or have your Google Apps administrator do it for you if it’s a business account.
Thanks for thinking about security, and let us know if ECHO can help.
P.S. You can get confirmation if your Google account WAS leaked by entering its address at https://isleaked.com/en.php but failing this database lookup doesn’t guarantee it WASN’T.