Mark Zuckerberg's Twitter and Pinterest password was 'dadada' (NOT satire; he's really an idiot)

The Register ^ | Jun 6, 2016 | John Leyden

[dayglored]

'Idiotic' doesn't even come close to describing this

Mark Zuckerberg’s Twitter and Pinterest accounts were hacked over the weekend.

The breach apparently happened after the Facebook boss’s login details were exposed via the recent LinkedIn password dump.

This implies Zuckerberg reused passwords across multiple sites or perhaps that the format of the password he chose for other sites was guessable after breaking his LinkedIn login credentials.

Zuckerberg’s Facebook account was not affected. A previously unknown prankster hacking group called Ourmine boasted about the alleged hacks, The hackers claimed that they found his password – dadada – in the LinkedIn dump. The affected accounts were rapidly re-secured, hopefully with a stronger password, and cleaned up. In a statement, Facebook said: "No Facebook systems or accounts were accessed. The affected accounts have been re-secured."

Richard Parris, chief exec at digital identity firm Intercede, commented: “Reports that Facebook founder Mark Zuckerberg’s social media accounts have been hacked should concern us all. If Mr Social Media’s accounts can be compromised, with all of the knowledge and resources he and his team have available, we should all be taking notice. In fact, we should all be very angry – the vast majority of the recently reported account compromises appear to relate to leaked usernames and passwords.”

“It’s been demonstrated time after time that the simple username and password combination is a fundamentally flawed approach to internet security, but that is typically all we are offered to protect our identity and our data,” he added.

Stephen Cox, chief security architect at SecureAuth, argued that the breach highlighted security shortcomings even with stronger two-step verification, where users need to use a code submitted to a pre-registered mobile phone as well as passwords in order to log into online accounts.

“The news that Mark Zuckerberg’s Twitter and Pinterest accounts have been breached following the LinkedIn attack goes to show the serious extent to which password re-use, and simple forms of authentication, can have huge knock on effects to online security,” Cox said.

“It also serves as a reminder that two-step verification, which LinkedIn supports for all of its users, is not enough in this age of rapidly advancing attacker capability. We must innovate in our approach to authentication, taking us far beyond traditional username and password and even vanilla two-factor approaches”.

[dayglored]

"Schadenfreude" doesn't even begin to approximate my feelings over The Zuck getting hacked for such a stupendously lame password.

[dayglored]

TWIT.

[dayglored]

Lord knows y'all could use some comic relief ... PING!

You can find all the Windows Ping list threads with FR search: just search on keyword "windowspinglist".

[PROCON]

Wait a sec, dadada was my password FIRST, I demand $millions in compensation due to mental duress and abdominal lesions!

[BBell]

What I really don’t like about Zuckerberg is that he stole an idea and ran with it and now some people think he is some kind of boy wonder genius.

[RushIsMyTeddyBear]

I really hope to see his downfall one day. And he can take his @$$kisser Glenn Beck with him.

[r_barton]

Mark Zuckerberg is a moron that won the lottery. It doesn’t make it smart, just lucky.

[sparklite2]

Does anyone use a different password for every site they’re registered on? How the heck would you manage that???

[RightGeek]

Yes. I use Roboform and there are others similar - http://www.roboform.com/

[SkyDancer]

Well as they say: A fool and his money are soon parted.

[RushIsMyTeddyBear]

Writing it down. With pen and paper.

[KosmicKitty]

I’ll admit a certain joy at this information.

Most popular password: PASSWORD

[Paladin2]

That’s what I finally succumbed to. There are just too many “accounts” these daze.

[Paladin2]

Sometimes I wipe them, with a cloth....

[dayglored]

> Does anyone use a different password for every site they’re registered on? How the heck would you manage that???

Yes, I do. For example, here's a good one that gives you a memorable 12-23 character password.

• Take the first line of a favorite song, select the first letter of the first six words. That gives you a random-looking string of characters.
• Add three digits or punctuation characters: one at the beginning, one in the middle, and one at the end of the string.
• The above is your common pattern for all sites. THEN:
• Add three or more characters at the end that are specific to the site, at least one of which is capitalized. Facebook might be "fBk".

You now have an easy-to-remember pattern that is mostly the same across your accounts, but which varies for each site in at least three of the characters. Even if one of the sites is hacked and they get your password, it's not going to work anywhere else, and the bad guys aren't going to spend their time guessing. They're looking for folks who use the IDENTICAL password multiple places.

For example. suppose you start with the Beatles' "I Saw Her Standing There". First line is "Well she was just seventeen, you know what I mean." You could start with "Wswjsy".

Add a "$" at the front, throw a comma between "seventeen" and "you", and a "7" at the end. Now you have "$Wswjs,y7".

So for your Facebook account, your password would be: $Wswjs,y7fBk

For Twitter it might be: $Wswjs,y7twtR

Good luck with that, hackers.

But of course there are dozens of such algorithms. Have fun inventing one!

[sparklite2]

What a nuisance. Another way to do it, if the site is bookmarked, is to go into that bookmark’s properties and put username and password in the comment section. Of course, if you lose the hard drive ... there go the bookmarks.

[dayglored]

Oops, sorry... “...gives you a memorable 12-13 character password”

[smokingfrog]

Lots of post-it! Notes.

[sparklite2]

LOL

[Eddie01]

da da da

https://www.youtube.com/watch?v=lNYcviXK4rg