Follow Slashdot stories on Twitter

 



Forgot your password?
typodupeerror
Check out the new SourceForge HTML5 internet speed test! No Flash necessary and runs on all devices. ×
China Crime Security The Almighty Buck IT

Duplicate Login Details Enabled Hack of More Than 20 Million Chinese Consumers (thestack.com) 14

An anonymous reader writes: According to various Chinese sources including Techweb (Chinese language), police in Zhejiang held a conference on Monday announcing that 20.59 million users of the 'Chinese eBay', taobao.com, had their login details stolen by proxy, when hackers ran user/pass combos from a stolen database of 99 million other users and found that more than 20% were using the same login credentials across different ecommerce sites.
This discussion has been archived. No new comments can be posted.

Duplicate Login Details Enabled Hack of More Than 20 Million Chinese Consumers

Comments Filter:
  • by magarity ( 164372 ) on Wednesday February 03, 2016 @11:47AM (#51431497)

    Taobao is more like Amazon or Newegg Marketplace where everything is "sold by , packed and shipped by Taobao". Any eBay type auctioning is rare.

    • by Anonymous Coward on Wednesday February 03, 2016 @12:30PM (#51432025)

      Really? "Packed and shipped by". Not sure who told you that but you definitely have never used them. AFAIK they don't pack or ship a thing. Yes, it's not like ebay because of "no auctions", but yes, it's much more like ebay than Amazon. The provide ratings, seller histories, minor guarantees, a basic escrow system, etc. Much more eBay than NewEgg.

      I think all the people I know who do business on there, and everyone I've purchased from, would be a little shocked that taobao was doing it for them. You might be thinking more of jd.com, but even they have 3rd party sellers (their tech gear is nearly all them, though).

  • by sunderland56 ( 621843 ) on Wednesday February 03, 2016 @12:09PM (#51431741)

    So, in a nutshell: the average Chinese consumer is just as ignorant about good security practices as the average American. Hardly surprising.

    • by Fetko ( 244582 )

      Well, the complete details on using the same login credentials on multiple sites isn't covered in TFA, but I would imagine that percentage to be much higher for average Americans.

  • I must say I do it, mostly on forums, but important things (email, banking, ebay, paypal, etc) have their own logins and passwords
    • I suspect most people do. You kind of have to if you are going to be active on a lot of sites because you eventually hit a point where coming up with a unique password that you can remember is next to impossible. Much like yourself I protect the important sites with unique passwords but sites that I don't care about may get the same password. The problem is that too many people don't even protect the important sites that well and end up using a common password or a username/username combo as UN/PW or the s
  • by JustAnotherOldGuy ( 4145623 ) on Wednesday February 03, 2016 @01:59PM (#51432991)

    "...and found that more than 20% were using the same login credentials across different ecommerce sites."

    And this is why you shouldn't do that.

    Basic, basic Password Security 101. Ignore at your own risk.

Stupidity, like virtue, is its own reward.

Working...