Brazzers Porn Site's Forum Hacked, Exposes Data Of 800,000 Users

Forum of porn website Brazzers has been hacked, exposing the data of as many as 800,000 users, reports Motherboard. Though the data originated from the company's separate forum, the report adds, Brazzers users who never signed up to the forum may also find their details included in the dump. From the report: Motherboard was provided the dataset by breach monitoring site Vigilante.pw for verification purposes. The data contains 790,724 unique email addresses, and also includes usernames and plaintext passwords. (The set has 928,072 entries in all, but many are duplicates.) Troy Hunt, a security researcher and creator of the website Have I Been Pwned? helped verify the dataset by contacting subscribers to his site, who confirmed a number of their details from the data.

Re:Really, plaintext passwords?

[hey!]

In all these years the message hasn't gotten out that no website has any need or business or excuse to be storing plaintext passwords???

I wouldn't be surprised. There's an awful lot of stuff you need to know, it's easy to underestimate if you've learned it gradually, over "all these years".

Having teenagers myself, I think their education is much better than mine ever was; and of course they have young and agile brains that absorb new information really, really well. But I wonder how the ones going into software are supposed to get to know all the things I've learned over forty years of working with software. Back in the day if you'd read a handful of important books like The Unix Programming Environment, The Art of Computer Programming, Software Tools in C etc you were in-the-know, especially if you had a subscription to Byte and Dr. Dobbs. You could take a few months off and learn the whole shmeer. Of course today you'd add Applied Cryptography to the canon... but still, could you do that today? Is there a software canon someone could study and be ready to go?

We're looking at colleges now, and nowhere on the computer science curriculum is there a course on "Stuff You're Really Expected to Know." You're supposed to pick that stuff up. Either the engineering departments look just like they did forty years ago, or they've gone radically interdisciplinary, an approach that in general I endorse. But either way, there is no way to tell that someone knows all the stuff he ought to know to develop software.

I'm not big on certifications; perhaps my long life history with software has jaded me; I've seen too many people who've collected commercial certifications that aren't worth a damn because it just shows they can parrot back information; they don't necessarily understand anything. But a basic "fit for service" certification is one that I could get behind.