Reddit users locked out of accounts after ‘security concern’

A large number of Reddit users are being told that they will have to reset their passwords in order to regain access to their accounts following what the site is calling a “security concern.”

The lockout has occurred as Reddit’s security team investigates what appears to have been an attempt to log into many users’ accounts through a credential-stuffing attack.

Read more in my article on the Tripwire State of Security blog.

Smashing Security podcast #109: Grinches target Amazon and Reddit, stealing Christmas from the poor

Join us for our special Christmas episode as we tell tales of printer hacking, website defacement, Grinches, and how Google is snooping on your private YouTube videos.

All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by The CyberWire’s Dave Bittner.

Reddit hacked – but don’t give up on 2FA just yet

Yes, SMS-based 2FA can be intercepted by someone determined to hack into your account.

But it’s also better than not having any multi-factor authentication in place at all.

Read more in my article on the Hot for Security blog.

Reddit rolls out 2FA to all its users

Reddit users can now secure their accounts with two-factor authentication (2FA).

Read more in my article on the Tripwire State of Security blog.

Reddit, Wikipedia, Bing and the FBI agree – an encrypted web is a safer web

Reddit is the latest in a series of popular websites to announce that it will be switching to HTTPS by default, protecting their visitors with secure connections.

Edward Snowden’s big regret

Daniel Ellsberg and Edward Snowden have something in common – although decades separate their whistle-blowing.

Both of them say “Don’t do what I did”. Find out what they believe they should have done differently…

17,000 Macs recruited into malware botnet, with a little help from Reddit

Security researchers believe that they have uncovered a new botnet, which has recruited thousands of Mac computers.

And Reddit is helping the botmasters communicate with the infected Mac computers.