2018年1月12日星期五

黑客盗用Github密码会做些什么

今天早上,收到一封来自Github的信,说我的帐号有可疑的活动,建议我修改密码。

Hi @Zola,

We recently noticed some suspicious activity on your GitHub account. Out of an abundance of caution, we made the decision to force a password reset for the account associated with this email address.

This kind of unauthorized access often occurs as a result of reusing the same sign in credentials on multiple online services. An attacker is then able to obtain lists of email addresses and passwords from other online services that have been compromised in the past, and try them on GitHub. To note, GitHub has not been hacked or compromised.

In this particular case, GitHub discovered suspicious starring and watching of repositories during the course of routine anti-spam work. Subsequent investigation revealed suspicious login activity on your account.

Follow the link below to request a password reset token.

https://github.com/password_reset

To protect your account from unauthorized access, please choose a strong and unique password for your account. We have a help article with some recommendations here:

https://help.github.com/articles/creating-a-strong-password/

We also strongly recommend taking the additional step to secure your account with two-factor authentication. The following guide provides step-by-step instructions:

https://help.github.com/articles/configuring-two-factor-authentication-via-a-totp-mobile-app

After you sign in, please review your security history for suspicious or malicious activity.

https://github.com/settings/security

If you have specific concerns you may contact our support team by replying to this message or submitting a message through our contact form.

https://github.com/contact

Thanks,
GitHub Support


我于是去修改了自创建帐号以来就没有修改过的简易密码,也加上了两步验证。然后查看别人盗用我的github帐号做了些什么。

2018年1月2日星期二

青年陽光黨的網站不能被訪問之迷

朋友Monica發來一個政黨的facebook頁面,結果我打不開這個政黨的網站。我以為這網站從來不曾存在過,結果bing有搜索結果:

Yahoo也有搜索結果: