科技创新!
Instacart insists it's probably your fault if your account got hacked
Instacart wants you to know that it takes the security of its customers' data very seriously.
With that in mind, the grocery-delivery dispatcher announced Thursday that if your account data is among the scores reportedly being sold on the dark web. then it's probably your fault.
According to the late afternoon blog post, a number of Instacart customers likely fell victim to what is known as credential stuffing. In no way, Instacart insists, was its platform "compromised or breached."
For the blissfully unaware, credential stuffing is a form of hacking that relies on victims reusing the same password across multiple online accounts (which people tend to do). So, if hackers manage to get ahold of emails and passwords from one service — like, possibly, TicketFly — they can then try those combinations en masse on a host of other platforms.
That, Instacart claims, is what it believes happened to its customers.
Tweet may have been deleted
"In this instance, it appears that third-party bad actors were able to use usernames and passwords that were compromised in previous data breaches of other websites and apps to login to some Instacart accounts," reads the blog post. "In some instances, this would have given the third party bad-actors access to basic customer account information such as first name, address, last order, total order number, and in some cases, the last four digits of a customer's credit card."
Of course, if Instacart offered two-factor authentication (and people used it) then this entire mess could have been avoided. As far as we can tell, Instacart does not offer this standard security feature. Its help page makes no mention of it, for starters. We also created an account, and attempted to enable the feature to no avail.
We reached out to the company for comment and to confirm that it does not offer 2FA, but received no immediate response.
Instacart doesn't get into specifics about how many customers were affected (we also asked that when we reached out to the company), but thankfully a Wednesday report from BuzzFeed News does. According to the publication, "sellers in two dark web stores were offering information from what appeared to be 278,531 accounts, although some of those may be duplicates or not genuine."
SEE ALSO: Instacart will provide 'safety kits' to Shoppers, but still no hazard pay
That, if Instacart is to be believed, represents a lotof reused passwords.
Thankfully, however, its customers can rest easy knowing that the "security of [Instacart's] customers' accounts and data is a top priority," and that Instacart thinks this entire mess was probably their fault anyway.
友链
外链
互链
Copyright © 2023 Powered by
Instacart insists it's probably your fault if your account got hacked-鼓盆之戚网
sitemap
文章
113
浏览
24
获赞
5191
热门推荐
5 ways to charge your new iPhone 12
Apple did the unthinkable with its new iPhone 12: It stopped including a charging brick in the box.Apple reveals AirPods Pro 2. Here's what's been upgraded.
You got AirPods in my iPhone event!During the iPhone 14 reveal stream on Wednesday, Sept. 7, Apple tTikTok's breakout stars of the year include Olivia Rodrigo and Taylor Swift.
Creators are the beating pulse of TikTok, as the app frequently proclaims. They are, after all, theTinder has made major changes to the way users can report sexual abuse and harassment
Tinder is changing the way it handles reports of sexual violence and harassment with the aim of provBarack Obama tweets a wholesome Fourth of July message
Barack Obama has been quiet as the Democratic presidential primary starts to heat up but the formerApple's iPadOS might be late due to Stage Manager issues
Apple's new products are probably coming in September, but iPadOS might not arrive until October. ThThe iPhone notch is no more on iPhone 14 Pro
Apple launched four new iPhones during Wednesday's iPhone 14 event on Sept. 7 — and none of thApple announces updated second
If the new Apple Watch Series 8 and newly introduced Apple Watch Ultra are just a bit too much for yHow the Twitter hack highlights the dangers of Slack
Slack holds the keys to its customers' kingdoms, and has long been aware how problematic that is. TwRussia and Ukraine: Who to follow to help cut through the misinformation
Russian President Vladimir Putin announced a military operation in Ukraine early Thursday, staging aApple's iOS 15.4 beta lets you add COVID
In the European Union, digital COVID-19 certificates are currently near-unavoidable, required for aiTikTok's 'I'm not a nosey person' trend is for messy people who live for drama
TikTok is a place for meddlers. If working from home has got you missing office gossip, then the "I'Lyft is quickly catching up to Uber in an important way
It's no secret that Uber is the most popular ride-hailing app. But Lyft is catching up ... at leastApple's iOS 15.4 beta lets you add COVID
In the European Union, digital COVID-19 certificates are currently near-unavoidable, required for aiNew AirPods Pro earbuds could debut at Apple event this week
Applemay have a last-minute surprise in store at its iPhone 14 event.We may see more than just the e