Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

I seem to recall that Honan's accounts were hacked not because of his password strength, but because Amazon and Apple at the time had flawed password-recovery options that allowed an attacker to reset his password.


That is also my recollection of the event. Basically, the recovery process for one gave away the secret allowing resetting the password on the other one, something along those lines.


That and being able to add any credit card to an Amazon account with a little social engineering. That was rather important.


So this fluffy piece of linkbait is even less relevant?

Fantastic.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: