Recommended Posts

Melfster

google security is a joke just like icloud security.   It amazing how easy it is get into some one android phone.

Link to post
Share on other sites
+warwagon

These Celebs need better passwords

 

mJ}FrO]t-MCjH)B-G&` anyone?

 

a celeb you'd think they would realize they are going to be the target of attack and for god sake keep your nude photos in something like like a trucrypt container, not the god damn cloud.

 

Having said that, Jennifer Lawrence does have nice ######.

  • Like 2
Link to post
Share on other sites
Orange Battery

I think 'epic' should be removed from the English language.

  • Like 1
Link to post
Share on other sites
Torolol

I think 'epic' should be removed from the English language.

now that you mentioned, it should've 'ePic' not 'epic', electronic-picture.

  • Like 2
Link to post
Share on other sites
Sonne

I'm an old man. So old in fact, I refuse to acknowledge the word "fap".

 

 

The BBS boards are that way grandpa  :woot:

  • Like 2
Link to post
Share on other sites
+E.Worm Jimmy

The BBS boards are that way grandpa  :woot:

 

 

ha. bulletin boards and 14.4k Modem (2400 baud)     

 

Slow-Loading-Porn.gif

  • Like 4
Link to post
Share on other sites
taim

ha. bulletin boards and 14.4k Modem (2400 baud)     

 

 

We should have a dial up day where participating websites limit their upload per visitor to dial up speeds, Throwback Internet.  :D

  • Like 2
Link to post
Share on other sites
Dot Matrix

As a warning, it's going around now that some of the images might have been taken at a time when some of the people were underage.

Link to post
Share on other sites
Krome

I think 'epic' should be removed from the English language thread title.

There...

 

Link to post
Share on other sites
Jaybonaut

Ariana Grande? Who cares? That's like looking at a naked 12 year old.

 

She's 21 according to Wiki anyway.

Link to post
Share on other sites
Draconian Guppy

As a warning, it's going around now that some of the images might have been taken at a time when some of the people were underage.

and? :shifty:  what's underage any way :P Laws vary by country

  • Like 1
Link to post
Share on other sites
Nagisan

and? :shifty:  what's underage any way :p Laws vary by country

While true, "underage" is not the same as age of consent. For example, in the US it is illegal for any person under the age of 18 to view, or perform in, a pornographic film, even if the age of consent is (for example) 16 in that state.

 

I'm sure other countries have their own laws pertaining to minimum age for someone to view, or perform in, pornography (photography included), and it's not always the same as age of consent (or even age of majority, which is the age you are legally considered a adult).

Link to post
Share on other sites
Dot Matrix

and? :shifty: what's underage any way :P Laws vary by country

And? It's illegal, buddy.

Link to post
Share on other sites
Luc2k

And? It's illegal, buddy.

Does that mean, that according to US law, the underage girl is also guilty of production and possibly distribution (if she sent them to someone) of child porn?

  • Like 1
Link to post
Share on other sites
+Frank B.

And? It's illegal, buddy.

You realise that not everything that's illegal in the US is illegal in other countries, right?

I don't condone the photo leak. But going 'Oh no, she was only 17 when the photo was taken - avert your eyes!' is downright ridiculous.

  • Like 3
Link to post
Share on other sites
timster

Does that mean, that according to US law, the underage girl is also guilty of production and possibly distribution (if she sent them to someone) of child porn?

yes. lock her up and treat her like a real criminal. because hurrr durrr it's the law and we most follow every single law to a tee!

 

*not sure if you caught the sarcasm, but I was being sarcastic.

Link to post
Share on other sites
HawkMan

These Celebs need better passwords

 

mJ}FrO]t-MCjH)B-G&` anyone?

 

a celeb you'd think they would realize they are going to be the target of attack and for god sake keep your nude photos in something like like a trucrypt container, not the god damn cloud.

 

Having said that, Jennifer Lawrence does have nice ######.

 

what do you think is the safer password,, that impossible to remember mess you put up there or "onedaythehorseateallthecheeseforthewin"

Link to post
Share on other sites
Skiver

what do you think is the safer password,, that impossible to remember mess you put up there or "onedaythehorseateallthecheeseforthewin"

 

Given all of this you can question the safety around it also but.... Soemthing like LastPass generates random passwords based on how you set it so that you don't need to remember it.

 

However to truly answer your question, in the world of decrypting passwords, the quoted password as far as my eyes can tell have no repeating letters (case differences do make a difference) whereas yours does, therefore if someone's method decrypted the first character, they can then safely work out at least another 2 from the entire password. I'm not working it all out however I suspect by getting to roughly half way they would have the vast majority if not all of your password decrypted completely.

 

So yes, his is safer. People seem to think that passwords are "guessed" where more often then not they are decrypted from a websites own password vault. in which I know I've said elsewhere related to this topic, when you couple that with people using the same passwords for mulitple sites means it gets very easy to get access to other things like iCloud for instance.

Link to post
Share on other sites
Praetor

Given all of this you can question the safety around it also but.... Soemthing like LastPass generates random passwords based on how you set it so that you don't need to remember it.

 

However to truly answer your question, in the world of decrypting passwords, the quoted password as far as my eyes can tell have no repeating letters (case differences do make a difference) whereas yours does, therefore if someone's method decrypted the first character, they can then safely work out at least another 2 from the entire password. I'm not working it all out however I suspect by getting to roughly half way they would have the vast majority if not all of your password decrypted completely.

 

So yes, his is safer. People seem to think that passwords are "guessed" where more often then not they are decrypted from a websites own password vault. in which I know I've said elsewhere related to this topic, when you couple that with people using the same passwords for mulitple sites means it gets very easy to get access to other things like iCloud for instance.

 

actually, no; according to Gibson (https://www.grc.com/haystack.htm) the password Hawkman posted is not only easier to remember but also safer because it has more characters, meaning the space to search is much, much bigger then the Warwagon one. And it has less entropy as well.

Link to post
Share on other sites
Skiver

actually, no; according to Gibson (https://www.grc.com/haystack.htm) the password Hawkman posted is not only easier to remember but also safer because it has more characters, meaning the space to search is much, much bigger then the Warwagon one. And it has less entropy as well.

 

Using that website, and unless I have missunderstood, it's aimed at brute forcing which is lets take a bunch of passwords and guess. So it's saying if you had an application that would come up with structures it would take longer yes.

 

But if you read what I wrote I'm talking about the ability of decrypting passwords, something that would be used IN a brute force attack. So we are technically talking two different things.

Link to post
Share on other sites
Praetor

Using that website, and unless I have missunderstood, it's aimed at brute forcing which is lets take a bunch of passwords and guess. So it's saying if you had an application that would come up with structures it would take longer yes.

 

But if you read what I wrote I'm talking about the ability of decrypting passwords, something that would be used IN a brute force attack. So we are technically talking two different things.

 

The fact that the password Hawkman posted has 38 characters and a search space of 6.11 x 10^53 makes it extremely difficult to decrypt; the Warwagon one, on the other hand, as "only" 19 characters but a higher entropy (85) then Hawkman's (26); still the search space is less (4.61 x 10^36).

 

Both are very strong, but one is much more easier to remember :)

Link to post
Share on other sites
HawkMan

the quoted password as far as my eyes can tell have no repeating letters (case differences do make a difference) whereas yours does, therefore if someone's method decrypted the first character, 

 

Doesn't really matter, how would they know they decrypted the first letter ? 

 

the only way to decrypt the password is to decrypt the whole thing, the decryptor doesn't know there is no special characters and because of it's length it needs to be brute forced, that means, it has to start with a single letter password(well probably 4 but for simplicity) it needs to check that character against every single possibility, then it has to go to two characters, and check every single possibility of the first one with every single possibility on the second one.  

 

Now witht he amount of characters in that password. without a quantum computer of some significance, you're not going to be able to break it. 

 

As for lastpass, that's all well and good, but what when you have to log into a service on a device/system where lastpass isn't a possibility, say... oh iCloud on your iDevice ;)

Link to post
Share on other sites
Setnom

I'm so very sorry that this happened to women I really like, like Jennifer Lawrence or Kate Upton. Privacy is important.

Nevertheless, as a man I don't feel ashamed to say I was delighted to see the pictures. Those two women are beautiful.
Link to post
Share on other sites
Skiver

Doesn't really matter, how would they know they decrypted the first letter ? 

 

the only way to decrypt the password is to decrypt the whole thing, the decryptor doesn't know there is no special characters and because of it's length it needs to be brute forced, that means, it has to start with a single letter password(well probably 4 but for simplicity) it needs to check that character against every single possibility, then it has to go to two characters, and check every single possibility of the first one with every single possibility on the second one.  

 

Now witht he amount of characters in that password. without a quantum computer of some significance, you're not going to be able to break it. 

 

As for lastpass, that's all well and good, but what when you have to log into a service on a device/system where lastpass isn't a possibility, say... oh iCloud on your iDevice ;)

 

Maybe my understanding of password decryption tools are wrong but I was under the impression the tools were smart enough to work out when more than one character were the same therefore knowing that once it's got one character, if there are others with the same value then it makes a safe assumption to repeat that part, therefore making it quicker.

 

I've not used LastPass for Android but I know it's available so I would assume it's available for iOS too which would give you the answer to your iDevice :). Sure it's a premium feature but given the nature of this topic, these victims can probably afford it! In fact I bet LastPass would probably jump at the chance to get anyone of these on board as a "I know use LastPass" to secure my data kinda advertisement and offer it for free.

  • Like 1
Link to post
Share on other sites
cork1958

i hope this will tarnish cloud reputation even more :laugh:.

And I seriously hope to see various lawsuit due this breach :rofl:.

 

I just loves seeing big corps getting sued.

 

No doubt. Always thought that cloud crap was one of the dumbest things ever, but everybody is falling all over themselves to think it's the coolest thing ever!

  • Like 2
Link to post
Share on other sites
This topic is now closed to further replies.
  • Recently Browsing   0 members

    No registered users viewing this page.

  • Similar Content

    • By zikalify
      Instagram changes nudity policy after backlash
      by Paul Hill

      Instagram has changed its nudity policy following backlash from users after it deleted posts from the account of plus-size model Nyome Nicholas-Williams. According to The Guardian, the deleted posts showed Nicholas-Williams with her eyes closed and arms around her breasts; this apparently violated the firm’s nudity policy and it turns out not everyone may have been held to the same standards.

      Instagram was accused of discrimination in August after black people and plus-size models reported that the platform had been deleting their posts. In the case of Nyome Nicholas-Williams, Instagram also threatened to delete her account despite it being verified and having more than 62,000 followers.

      Responding to the deletions of posts and the racism accusations, a spokesperson for Instagram said:

      People like Nicholas-Williams will not have to wait long before they can begin posting on Instagram unimpeded because the company confirmed that the policy change will apply across both Instagram and Facebook starting this week.

      Source: The Guardian

    • By zikalify
      UN body raises concerns over digital assistants defaulting to female voices
      by Paul Hill

      A new publication from UNESCO has raised concerns over digital assistants which default to a female voice and the impact this could be having on people. In the new report, called ‘I’d blush if I could’, UNESCO raises the concerns that it has and how they can be addressed.

      The naming of the report highlights the issue the UN is trying to address. ‘I’d blush if I could’ is the response that Apple’s Siri gives when a user says “Hey Siri you’re a bi***.” In the report, UNESCO working with Germany and EQUALS Skills Coalition, set out five concerns that they have regarding the widespread usage of female voices for assistants, they are:

      Google has already implemented features which encourage users to use manners when speaking to their digital assistant, however, UNESCO’s report still shows there are a couple more things that could be improved. In the document, the United Nations’ recommendations around AI gendering are included. They implore companies and governments to:

      Discussing the findings, Saniye Gülser Corat, Director of Gender Equality at UNESCO, said:

      Another suggestion UNESCO gave was for the teams building the software to be better balanced. It pointed out that today women only makeup 12% of AI researchers, represent just 6% of software developers, and are 13 times less likely to file an ICT patent than men. A section in the publication recommends that this gap can be closed with gender-equal digital skills education and training.

    • By zikalify
      Gmail Smart Compose stops guessing gender pronouns
      by Paul Hill

      Looking not to cause offence, Google has altered Gmail’s Smart Compose in order to avoid guessing someone’s gender incorrectly. Before the change, Google’s AI might interpret that you’re discussing meeting an engineer and because engineers are more likely to be men, Smart Compose would auto-suggest ‘him’ even if the person you’re talking about is a woman. With the update, you have to write exactly what you mean rather than accidentally tabbing and getting the wrong gender.

      Discussing the change, Gmail product manager, Paul Lambert, said the issue was discovered earlier this year when he wrote “I am meeting an investor next week,” to which, Smart Compose, suggested the follow up question “Do you want to meet him?” even though the investor was a she. Due to the political sensitivities around gender, Google decided to stop guessing gender so it doesn’t get complaints from people down the road.

      Google’s Smart Compose uses natural language generation (NLG) to learn how to write sentences. NLG consists of collecting up sentences and studying patterns between words. When it comes to sectors such as finance and technology, Smart Compose learned that it’s usually men in those fields so it began suggesting “he” or “him”.

      According to Lambert, Smart Compose helps on 11% of the messages sent worldwide from Gmail.com. Meanwhile, the gender pronoun ban affects less than 1% of cases where Smart Compose would suggest something, so you’re experience is hardly going to change and you’re less likely to mess up your email.

      Source: Reuters via The Verge

    • By +Mirumir
      New app creates legally binding contracts for consensual sex
       
      Full coverage
       
      LegalFling - Get explicit about sexual consent, secured in the blockchain
       
      "Is this the future of consensual sex?"
       
       
    • By Hamza Jawad
      Microsoft and Amazon employees involved in sex trafficking scandal
      by Hamza Jawad

      Although tech giants like Google have been in the center of controversy surrounding sexism, this time, Microsoft and Amazon are involved in a somewhat different side of the tech industry. According to a report published recently by Newsweek, hundreds of emails sent from high ranking officials of these companies to trafficked sex workers in the past few years have been uncovered.

      Among the emails, 67 were sent from Microsoft employee email accounts, in comparison to 63 from Amazon. Quite a few more emails were also sent via employee accounts from various tech companies such as T-Mobile, Oracle, Boeing, and other local Seattle firms. Apparently, initial communications occurred via workplace accounts because Seattle pimps require an employee email or badge to make sure that their is no police involvement. Importantly, the men who sent these emails have not been charged as of yet, and not identified by Newsweek either.

      Most of the emails were obtained by the publication through a public records request to the King County Prosecutor’s Office. Some were collected by law enforcement authorities back in 2015, amid a sting operation involving several high-level Microsoft and Amazon directors. These emails document the purchase of services from trafficked sex workers, and even the tech industry's control over brothels. According to authorities, trafficked Asian women service hundreds of men each day in Seattle.

      In a statement emailed to Newsweek, Microsoft has made clear its strict policy against any employees involved in such "unethical" actions, noting:

      Amazon made a similar statement to the publication, highlighting its investigations of the matter and referring to the company's Owner's Manual, which states that, "It is against Amazon's policy for any employee or Contingent Worker to engage in any sex buying activities" in the workplace, or any work-related setting.

      Alex Trouteaud, Director of Policy and Research at Demand Abolition, a national anti-trafficking organization, noted that the tech industry is a “culture that has readily embraced trafficking.” He also felt that the tech sector was surprisingly nonchalant, with regards to this issue. In fact, according to Polaris, another leading anti-human trafficking organization, more than 700 Asian brothels are based in silicon valley.

      It will be interesting to see what more will be uncovered as in-house investigations are conducted into this matter by tech giants such as Microsoft, and whether or not the matter will eventually fall into the hands of law enforcement agencies.

      Source: Newsweek via Engadget