Initially, I was skeptical that this was worthwhile to mention. I mean, so what. Hackers snagged a Disqus database from back in 2012– who cares, right?
Then I did some checking. In reading the press release, the Disqus folks nicely downplayed the issue with this statement:
Potential Impact For Users:
- Right now there isn’t any evidence of unauthorized logins occurring in relation to this. No plain text passwords were exposed, but it is possible for this data to be decrypted (even if unlikely). As a security precaution, we have reset the passwords for all affected users. We recommend that all users change passwords on other services if they are shared.
So I did a bit of checking. I have a number of Disqus accounts from years back, one from 2011 even. Guess what?
My 2011 password worked – What the @#%^!
I found that the best way to change the password was to use the “Reset your password” by email option.
I sure hope my email account isn’t hacked as well…