Enquiring minds...
How come the headline doesn't resemble the article? Is El Reg a tabloid now?
Passwords used by Donald Trump's incoming cybersecurity advisor Rudy Giuliani and 13 other top staffers have been leaked in mass hacks, according to a Channel 4 investigation. Giuliani, incoming national security advisor Lt Gen Michael Flynn and various cabinet members of Trump's administration had their details included in …
> An appearance of someone's records in Have I Been Pwned? should not imply that they have been hacked
But surely records cannot get there completely randomly?
Well, just out of curiosity I tried entering my e-mail address -- one that every spammer already has (been pretty much public since late 90s).
And of course it led to a big red ‘Oh no — pwned!’ page. The reason being a ‘paste’. That is a random Pastebin copy of file(1) magic database to which I contributed, and so it contains my e-mail. Why something like this was picked up, no idea.
To be fair, it is Rudy that's going forward into the future, and the Dems who are fading into obscurity (except for the howling). No need to even look for their names on that list. Who cares? Let Rudy take the heat on this one. He's the one the President picked and it's time to put on the Big Boy pants.
Rudy, go forth, learn, tighten up your ship like we all want you to, and see if you can't do a little better than they who preceded you. Trust me, it won't be too terribly hard.
"For balance how many of Hillary's team or Obama's had passwords in these hacks?"
Better still (and I _AM_ pro-Trump) do like OBAKA did, and JUST! BLAME! THE! PREDECESSOR!!
He's only been in office for 2 days, after all.
Looks to ME like Giuliani needs to GET HOT and start shoring up his 'firewall defenses'...
I'd be interested to know that too as that would actually tell you something.
Merely appearing on the list means nothing as many, many companies have been hacked. I'm on there too thanks to bloody Adobe. All that anyone will get from that is an adobe@one_of_my_domains.com email address and unique password for that account. It's only re-using passwords or -somewhat better- an easily-guessed password system that lands you in trouble.
All of the political appointees are exactly that: political, and appointed. If somebody competent gets into a position, it's through sheer accident, not by design. You'll never see this: "Wanted, proven BOFH for national position. Responsible for all government computer security."