Hackers Penetrate Reddit Email And Social Network Accounts

Reddit Logo

On the Reddit blog today the social web sharing site announced that their [email protected] account had been hacked, adding that the account is used only for feedback e-mail, thus no confidential data was compromised. Reddit is now using [email protected] as their official e-mail for the time being.

Reddit released the following statement via their blog:

“We’re in contact with both google’s and twitter’s security team, and the site has not been broken into. All he’s done at this point is ruined everyone’s night. We don’t recycle passwords, and we don’t store passwords in the reddit email. No one’s account has been compromised. We don’t store any confidential information in that account; it is just for feedback email.”

The part about the team contacting Twitter was added because their official Twitter account was also compromised leading to fake Tweets being added to their account. The fake Tweets have now been removed.

Not surprisingly the Reddit story reached the top of Reddit.

One user asked via Reddit’s own commenting system why Reddit was using Gmail in the first place to which they received this answer:

“When we were much, much smaller (no mail server, etc) it was the easiest way for several people to get to the feedback account at the same time, and it stuck.”

Tip to growing sites: don’t trust other companies to protect your private data. Hmmm..I wonder if their password was Digg or StumbleUpon…all kidding aside, come on Reddit, I love your service, but your own goofs shouldn’t be landing at the top of your own site. [via Mashable]

Comments

  1. says

    I wonder how these accounts get hacked in the first place. Is there any undocumented security vulnerability that hackers take advantage of, or are the Reddit admins themselves to blame?

  2. says

    This is the most crucial point. One that should have been learnt after the Chinese Google hacking incident. Leave your messages on someone else’s server if you want to take the risk that someone will read them all.

    You are responsible for your privacy. Use POP instead of IMAP. Use Thunderbird Portable or TrulyMail Portable if you want to access your email from multiple computers. Encrypt (all of) your messages.

    You are responsible for your privacy. Take the necessary steps. They are often easy and free.

Leave a Reply

Your email address will not be published. Required fields are marked *