GNU social JP
  • FAQ
  • Login
GNU social JPは日本のGNU socialサーバーです。
Usage/ToS/admin/test/Pleroma FE

  • Public

    • Public
    • Network
    • Groups
    • Featured
    • Popular
    • People

Conversation

Notices

  1. Embed this notice
    BrianKrebs (briankrebs@infosec.exchange)'s status on Wednesday, 03-Jun-2026 20:49:56 JST BrianKrebs BrianKrebs

    RE: https://infosec.exchange/@briankrebs/116670688015956223

    Dashlane posted an update saying hackers brute-forced its two-factor authentication system, and gained access to the encrypted password vaults for "fewer than 20 personal plan users." Dashlane said there was no evidence of a hack of its own systems, but it hasn't shared yet why or how that 2FA was compromised. The company said “the goal of the attack was to brute-force two-factor authentication (2FA) protections to allow the attacker to register new devices on existing user accounts,” and that it has already notified affected users.

    https://support.dashlane.com/hc/en-us/articles/36038764990866-Security-advisory-Brute-force-attack-on-Dashlane-user-accounts?7194ef805fa2d04b0f7e8c9521f97343

    In conversation about a day ago from infosec.exchange permalink

    Attachments

    1. Domain not in remote thumbnail source whitelist: media.infosec.exchange
      BrianKrebs (@briankrebs@infosec.exchange)
      from BrianKrebs
      Attached: 1 image This looks ominous. The password manager service Dashlane apparently is investigating some strange "Account suspended -- please contact us" emails going out, as well as related login difficulties. I noticed this after a reader and Dashlane user wrote in to say he's on a family plan and he received a notification that they'd locked his account because there was an attempt to add a device and too many MFA failures. Here's what their techs are telling customers: "Thank you for reaching out to us! It's Gustavo from Dashlane Customer Support. I am very sorry for any inconvenience this issue has caused. We are currently investigating an issue regarding unexpected emails with the subject "Account suspended - please contact us", as well as some related login difficulties. Our engineering team is actively working on a resolution. While we investigate, please follow these important recommendations to ensure you retain access to your data: - Do not attempt to change or reset your Master Password at this time. - Do not log out of Dashlane on any device where you are currently logged in. We are treating this with the highest priority and will update you as soon as we have more information or a definitive fix. Thank you for your patience and understanding while we sort this out." Their account status page now says: May 31, 2026 17:50 UTC INVESTIGATING We are continuing to investigate the "Account suspended" notifications. Our engineering teams are actively working on a resolution and investigating the root cause of these messages. We are treating this with the highest priority and will provide further updates here as soon as more information becomes available. Thank you for your continued patience and understanding. May 31, 2026 15:19 UTC INVESTIGATING We have received reports from several users having received an email that their account has been suspended. We have also received reports that some users are experiencing difficulties in logging in to Dashlane after resetting their master password. We are investigating this situation, and we will provide further updates as soon as we have more information. Thank you for your understanding. #dashlane
    • Embed this notice
      Rich Felker (dalias@hachyderm.io)'s status on Wednesday, 03-Jun-2026 20:49:55 JST Rich Felker Rich Felker
      in reply to

      @briankrebs "gained access to the encrypted password vaults" sounds like they weren't encrypted.

      Unless they mean the attackers only gained access to what amounts to random bits.

      In conversation about a day ago permalink
    • Embed this notice
      Rich Felker (dalias@hachyderm.io)'s status on Wednesday, 03-Jun-2026 20:54:08 JST Rich Felker Rich Felker
      in reply to

      @briankrebs Ahhh, that makes sense. So if they have strong passphrases, nothing. But if weak, crackable offline with big resources.

      In conversation about a day ago permalink
    • Embed this notice
      BrianKrebs (briankrebs@infosec.exchange)'s status on Wednesday, 03-Jun-2026 20:54:09 JST BrianKrebs BrianKrebs
      in reply to
      • Rich Felker

      @dalias They got access to 20 encrypted vaults. They'd still have to work out the master password for those targeted accounts. Theoretically, that could be done offline, as happened w/ the breach at LastPass, but it took many months for a lot of those stolen vaults to be cracked.

      In conversation about a day ago permalink

Feeds

  • Activity Streams
  • RSS 2.0
  • Atom
  • Help
  • About
  • FAQ
  • TOS
  • Privacy
  • Source
  • Version
  • Contact

GNU social JP is a social network, courtesy of GNU social JP管理人. It runs on GNU social, version 2.0.2-dev, available under the GNU Affero General Public License.

Creative Commons Attribution 3.0 All GNU social JP content and data are available under the Creative Commons Attribution 3.0 license.