Twitch Majorly Leaked

I think we're missing an opportunity here.

You know how farmers are paid to not grow corn? I think many of us could be paid to not lick microphones.

1 star reviews include:
"God, please stop."
"Ugh."
"Ralphy's fear of lifebouy soap has nothing on this. I threw up in my mouth several times, and then went for lifebouy as a palate cleanser."
"What am I watching. Why? Stop, seriously, please stop."
"I've been to a bullfight, a PTA meeting, pornhub, a My Little Pony convention, and that's the most upsetting experience I've had this year. Thanks."
 
OutOfPhase said:
I think we're missing an opportunity here.

You know how farmers are paid to not grow corn? I think many of us could be paid to not lick microphones.

1 star reviews include:
"God, please stop."
"Ugh."
"Ralphy's fear of lifebouy soap has nothing on this. I threw up in my mouth several times, and then went for lifebouy as a palate cleanser."
"What am I watching. Why? Stop, seriously, please stop."
"I've been to a bullfight, a PTA meeting, pornhub, a My Little Pony convention, and that's the most upsetting experience I've had this year. Thanks."
Click to expand...
Someone clearly hasn't heard of ASMR, and wildly misunderstands what the people desire...
 
The report I saw stated that all of Twitch's stored user data was hacked/leaked - including primary email address, userid's & passwords :/
Had to spend most of yesterday changing passwords at 20+ places :(
/don't want to buy a pw manager... but it may come to that if this sh*t keeps happening every few months
 
Fix Me said:
Seriously. I'm on Twitch a lot and I have no idea who these girls even are. They're easily ignored.
Click to expand...
Kind of. Twitch will pretty easily place them at the forefront and if you click on even one of them----your recommends will be flooded for a couple of days.
 
chameleoneel said:
Kind of. Twitch will pretty easily place them at the forefront and if you click on even one of them----your recommends will be flooded for a couple of days.
Click to expand...
I haven't notice them on the front page. I can't even find the hot tube category unless I search it.
 
vegeta535 said:
It is 5 lines down. I wouldn't call that at the forefront.
Click to expand...
I think at this point, it seems pretty clear that Twitch re-arranges its website, per-user.

I clicked on one hot tub stream, like 3 months ago. Now, every time I log into twitch, I see at least a couple of "hot girl" type streams, such as ASMR or hot tubs, right in that top bar of videos for you to easily click on. and if I go to categories, "Pools, Hot-tubs and Beaches" is near the beginning of the categories listings.
 
Lumpus said:
The report I saw stated that all of Twitch's stored user data was hacked/leaked - including primary email address, userid's & passwords :/
Had to spend most of yesterday changing passwords at 20+ places :(
Click to expand...
I interpret that to mean you reuse the same password on multiple sites.
Lumpus said:
/don't want to buy a pw manager... but it may come to that if this sh*t keeps happening every few months
Click to expand...
Don't buy one, but do use one. There are plenty to choose from. Ideally, it should be open source.
https://pwsafe.org/
 
I would recommend LastPass. I think it is like $3/month, but well worth it. How much would you lose if hackers cleaned out your back account? Yes, it has happened to me.

If you don't want to pay, you can check KeePassXC ( https://keepassxc.org/ ) but honestly the cloud systems are way better.

For example, with LastPass it syncs your passwords to all devices. So you can have multiple browsers (even on different computers) and have all your passwords. Also on mobile it is key, because trying to type in a password on your phone is horrible.

Also, it will auto-fill passwords, but only for the actual real site. So if somehow you get tricked into visiting PayPa1 instead of PayPal, the password won't fill and you will know something is wrong.

And it generates the passwords for you, random strings that can be any length you want that no one will ever guess. And if some site gets hacked (and it will) they will have one random password that is not connected to anything else.

Honestly it is one of the best investments you can make. And your life will be easier.
 
It's all good until the Last Pass database gets hacked, or whatever cloud system you use.
 
Lumpus said:
The report I saw stated that all of Twitch's stored user data was hacked/leaked - including primary email address, userid's & passwords :/
Had to spend most of yesterday changing passwords at 20+ places :(
/don't want to buy a pw manager... but it may come to that if this sh*t keeps happening every few months
Click to expand...
Buy? Keepass is free. I'm sure there are others.

But more importantly, if you're using one, you have different passwords for every site, therefore you don't need to change the password on 20 other sites because one got hacked. That should be enough reason right there.
 
Just overly cautious. I just changed any password that I had associated anywhere with the leaked Username (not my primary)
 
password_reuse.png

https://xkcd.com/792
 
I agree with using open source, libre password managers. From a browser-focused perspective, Firefox has a very solid built in password manager and sync system, but it is of course focused entirely around and on the browser - if you do nothing else, making use of it (including things like password generation, as well as storage and editing ) can be an easy benefit over simply using the same PW for everything. If you want something more comprehensive there are quite a few out there (including some that are essentially "derives passwords from a master password as required" , like LessPass and Spectre but I usually don't favor those quite as much as everything relies on that single master password.) , but I generally suggest 2 "families".

1. BitWarden - https://bitwarden.com/ - if you want something cloud-based , more akin to commercial cloud based password vaults like LastPass , 1Password and the like, this is your go to. BitWarden is even self-hostable on the server side if you wish and have the tech, but even for those who want to use its FOSS client and official server, its E2E zero knowledge encrypted. Using the official server is free, but for a few bucks ( literally, an individual Premium sub is $10 / Year and a family pack of up to 6 accounts all of which can share between vaults, is like $3 per month! They're really being reasonable. Business options are available too ) you can get new features and benefits but the core password management and a lot of other things are always free.

2. KeePass - originally https://keepass.info/ , sites vary depending on client - If you wish to manage your own password database as a file, in this case a .kdbx file, KeePass is the way to go. It refers to a family of applications that can all read and write from the very comprehensive KeePass standard format. You will need to place your vault file somewhere all your clients can get to it as desired, or otherwise sync them (programs like Syncthing can take care of that nicely, and depending on client some may have syncing features built in / plugin available), but you have full control of every bit of the experience - where your vault is, what clients you use to access it, and more. Some clients worth using are ... . for desktop PC (Windows and Linux, probably Mac too) the original "dot info" KeePass 2.x client - https://keepass.info/ . Tons of native features, even more plugins. Does require Mono or .NET but those are FOSS. Some prefer the more streamlined KeePassXC - https://keepassxc.org/ - which is free of .NET and a great choice. It doesn't support the myriad plugins of dotinfo, but has a comparable included feature set. On Android, I suggest KeePassDX - https://www.keepassdx.com/ - which you can pick up through not just GooglePlay but also the excellent FDroid open source app repository. There are plenty of other apps that are KeePass compatible but these are some of the most full featured and updated on OSes that I use ( I know there are some good ones for iOS, but I've not used it for years so I wouldn't make any suggestions). For managing your own password database as a file, KeePass is probably one of the best solutions around for security and features.

Between those two you'll have a great system that is open source, powerful, and private! Dont forget that both BitWarden and KeePass have capability to generate passwords for websites, auto-type them in, and even have integrations with Firefox (and Chrome/ium powered browsers if you must) to use them instead of browser-based password managers (sometimes browser addons are necessary). Best of luck!
 
You must log in or register to reply here.
Back
Top