New
#1
Eye4Fraud hacked - how to protect yourself
I just got this email message. Anyone else receive this message?
In February 2023, data alleged to have been taken from the fraud protection service Eye4Fraud was listed for sale on a popular hacking forum. Spanning tens of millions of rows with 16M unique email addresses, the data was spread across 147 tables totalling 65GB and included both direct users of the service and what appears to be individuals who'd placed orders on other services that implemented Eye4Fraud to protect their sales. The data included names and bcrypt password hashes for users, and names, phone numbers, physical addresses and partial credit card data (card type and last 4 digits) for orders placed using the service. Eye4Fraud did not respond to multiple attempts to report the incident.
However, I have no idea which merchant site or sites were included in this hack because I never heard of Eye4Fraud until now. How useful is a bcrypt hash of a password?
If it matters, I use Dashlane, and most of my passwords are 16+ characters. For my bank and credit card websites, I don't even put those into Dashlane. I force myself to memorize the login info.