Comments on: AOKP Forum Infected With Malware, All Usernames and Passwords Compromised

By: Justin W

Justin W — Sat, 17 Nov 2012 02:22:00 +0000

This reminds me of what Chrome does for all Google sites. That would make life a breeze, but Chrome doesn’t (as far as I’m aware of or cared to look) offer any real security features to prevent others from using my info without my permission.

By: SamsungFTW

SamsungFTW — Sat, 17 Nov 2012 02:12:00 +0000

Those are all decent ideas but also dependant on using a particular subscription service. Using a supscription service (such as facebook) sometimes comes with unwanted notification emails and other hassels. Sure you could turn them off, but I think it would be much simpler to have a universal password service that is dedicated to that and only that. After setting it up once, you would log in to everything with that and could set your browser to use it to log in to all websites automatically if you choose, or optionally do that and have the browser ask for it once when you open it. Since it would be integrated into the browser, websites would not even ask you for that information and you would no longer see log in screens. Lastpass does something similar, but it would be nice rather than storing other passwords just having one unified password that is used everywhere.

The catch is that it would have to be very complex and well guarded, heavily encrypted and not shared with anyone because if someone got it that would mean trouble.

By: Iceman0803

Iceman0803 — Thu, 15 Nov 2012 12:18:00 +0000

http://lastpass.com/

By: Ashley Thurston

Ashley Thurston — Wed, 14 Nov 2012 21:23:00 +0000

Ashley from Dashlane here. I see one of our awesome users already told you about Dashlane. We’re running a promo today for Android fans on Reddit: Dashlane Premium for a year ($39.99 value) totally free! And now Droidlifers! Details here: http://www.reddit.com/r/Android/comments/136t69/dashlane_premium_android_for_redditors_only/

By: Verizon

Verizon — Wed, 14 Nov 2012 20:44:00 +0000

See, once I release that then everyone will have time to notice the reception problems. This way you are all too focused on the update and don’t even notice the reception problems.

The next comment will be, “What reception problems?” to which I will reply, “Exactly!”

By: Jack Witherell

Jack Witherell — Wed, 14 Nov 2012 18:12:00 +0000

none of this would have happened if you had just given us gnex owners jellybean!!!

By: Jack Witherell

Jack Witherell — Wed, 14 Nov 2012 18:09:00 +0000

Who dafuq downvoted YOU?!?

By: brkshr

brkshr — Wed, 14 Nov 2012 16:48:00 +0000

AOKP reiterated later that the passwords should not have been compromised. They still thought it was best to let everyone know.

By: normmcgarry

normmcgarry — Wed, 14 Nov 2012 16:22:00 +0000

Open Source Android security vs Open Source Bulletin Board software security? No, I’m afraid those do not speak to one another at all.

By: michael arazan

michael arazan — Wed, 14 Nov 2012 11:10:00 +0000

I’m guessing the person(S) who infected the aokp in the first place voted him down

By: raoul duke

raoul duke — Wed, 14 Nov 2012 05:59:00 +0000

2 step is where its at.

By: Evan Wickes

Evan Wickes — Wed, 14 Nov 2012 04:39:00 +0000

google isnt so safe. my account was hacked & i’m far from a grandma surfing the web. also google spends thousands of $$$ blocking attacks from china. altho i use google day-in day-out, i dont think they are the solution unless u use the 2 step authentication.

By: Andrew

Andrew — Wed, 14 Nov 2012 01:30:00 +0000

Dang that sucks… Times like this make me glad I started using a program like Dashlane (http://u4s.us/sDTw) to manage all my online passwords and help me keep them unique so the possibility of one getting comprimised won’t make me have to change a ton of logins.

By: Roman

Roman — Wed, 14 Nov 2012 01:24:00 +0000

This. Honestly

By: Simon Belmont

Simon Belmont — Wed, 14 Nov 2012 00:53:00 +0000

Fair enough. Perhaps it was an XSS attack then.

Either way, I stand by what I said above. It’s a shame that it happened.