Warning; change your password, check you're logged in?
2006-Jan-21, Saturday 14:41![[personal profile]](https://www.dreamwidth.org/img/silk/identity/user.png){kind=small}
matgbIn their infinite wisdom, LiveJournal have expired everyones cookie without warning us. There were already some logout problems due to the new subdomain as well. I didn't realise until page 2 of my friends page, clicked reply; reloading got me 3 friends locked posts from people.
They're doing it all for our own good, but, well, they're announcing things so badly it's pissing people off. Why doesn't that really surprise me?
They're doing it all for our own good, but, well, they're announcing things so badly it's pissing people off. Why doesn't that really surprise me?
Change your password
Seriously, according to this blog/news post:several Bantown members spoke at length in an online instant-message chat with Security Fix. During the chat, members of the group claimed to have used the Javascript holes to hijack more than 900,000 LiveJournal accounts..."However, we have only used approximately five hundred of these cookies so far, so it is impossible to tell whether this sample is statistically valid. Still, a massive number have been compromised."In other words, they know 900,000 passwords, but have used 500 of them, so they may have yours without you knowing it.
