MacKeeper Discloses 13 Million Mac Users' Details With Poor Hash Protection

An anonymous reader writes: Mac security software suite MacKeeper is recovering after a hack leaked millions of users' personal information. Kromtech, the software developer, confirmed that it had received notice of the hack yesterday, discovering a hole in its security which was exposing customer usernames, email addresses and other personal data for as much as 13 million users. The hole was patched within a matter of hours after security researcher Chris Vickery had published details of the error over the weekend. Vickery, who had been unfamiliar with both MacKeeper and Kromtech, explained that he had discovered the security fault by browsing the connected devices search engine Shodan.io.

So MacKeeper is actually real?!?

[pipedwho]

With the amount of "MacKeeper" subterfuge style pop-up ads that appear all over the place, I've always assumed that it was a scam. Kind of like the random calls you get from India saying your Windows machine has a virus - even if you don't use Windows.

Bad summary, no hack involved

[PRMan]

FTA:

‘The data was/is publicly available. No exploits or vulnerabilities involved. They published it to the open web with no attempt at protection,’ Vickery wrote in a Reddit post. He noted that Kromtech was alerted and was able to quickly patch the vulnerability.

There was no need for a hack because it was published to the open web!

Article Correction

[redback]

First line should read

Mac malware vendor Mackeeper

Re:Big news

[ruir]

Gullible in an understatement. Buying something that spams you opening their website while opening other pages, or with adverts get your Mac "faster" is so stupid that beggars belief. mackeeper site used to be pinnned to 127.0.0.1 in my hosts file, and nowadays is black holed in my DNS server.