Facebook is forcing me to change my password... -.-"

Discussion in 'The Edge of the Forum' started by smileyhead, Mar 26, 2016.

  1. smileyhead
    OP

    smileyhead Bow ties are cool.

    Member
    GBAtemp Patron
    smileyhead is a Patron of GBAtemp and is helping us stay independent!

    Our Patreon
    2,592
    5,522
    Aug 31, 2015
    Hungary
    Budakeszi, Hungary
    Today, I got kicked out of Facebook on my phone, and it told me I have to log in on a computer. As soon as I got to my computer, this lovely message welcomed me:
    Screenshot (73).png
    It's forcing me to change my password. There's nothing I can do.
    What is this bullshit?!
     
  2. Touko White

    Touko White Scarlet's Clone

    Member
    671
    1,409
    Jan 12, 2016
    United Kingdom
    England
    So Facebook scans hacker logs with your password? How nice.
     
  3. FAST6191

    FAST6191 Techromancer

    pip Reporter
    23,361
    9,153
    Nov 21, 2005
    I imagine it is more that when password lists and usernames/emails get dumped online then facebook gets them and runs the hashes of the passwords against yours, if the usernames/emails match a password then it sends that message up so people do not have their facebook account hijacked. So many people reuse passwords that if you know an email then the would be hacker probably has it worth their time to try it out against all the popular email providers, facebook and similar such "high value" sites.
     
    Tomato Hentai likes this.
  4. Touko White

    Touko White Scarlet's Clone

    Member
    671
    1,409
    Jan 12, 2016
    United Kingdom
    England
    I always thought the point of a hash is that it cannot be decrypted.
     
  5. FAST6191

    FAST6191 Techromancer

    pip Reporter
    23,361
    9,153
    Nov 21, 2005
    Depends upon the hash method as some are able to be brute forced. There are rainbow tables I suppose (hash every word and common variation on it in the dictionary, you will make something a few gigabytes in size but that is nothing major and it will allow for fun, more http://project-rainbowcrack.com/table.htm ), and they mean you also have to salt things, preferably with a unique salt for every user (millisecond they joined being a good example).

    I did wonder what Facebook did here. I imagine they have their salted tables used for normal logins but then the plainly hashed or otherwise salted passwords for the rest if they wanted to keep things a bit separate. Whether they maintain their own set of rainbow tables I am not sure.
     
    Touko White likes this.
  6. Tomato Hentai

    Tomato Hentai baja boner blast

    Member
    3,730
    6,019
    Oct 30, 2014
    Canada
    actually north korea. please send help
    Shit, I should probably check to see if Facebook is yelling at me about this too. I use Facebook to log into a bunch of other sites.
     
    daxtsu and smileyhead like this.
  7. daxtsu

    daxtsu GBAtemp Guru

    Member
    5,539
    3,929
    Jun 9, 2007
    Antarctica
    tomat0MomtHor_bund69 won't work anymore. :P
     
    migles, Tomato Hentai and smileyhead like this.
  8. migles

    migles Mei the sexiest bae

    Member
    GBAtemp Patron
    migles is a Patron of GBAtemp and is helping us stay independent!

    Our Patreon
    6,820
    4,570
    Sep 19, 2013
    Saint Kitts and Nevis
    my dad works for nintendo.
    that's why i have several levels of passwords...
    highers level password for email (with this you will gain access to other stuff using the recovery options)
    a password for important websites with sensitive info that can cost me money (amazon, ebay, paypal)
    another password for semi-important stuff (online profiles like a facebook account)
    and a password that i use on general stuff like forums or sites that don't have any sensitive info about me
    there is also bullshit logins that i use on websites that give me "you need to register for that" bullshit and are against bugmenot.. but those i use temporary email...
     
    Last edited by migles, Mar 26, 2016
    Tomato Hentai likes this.
  9. FAST6191

    FAST6191 Techromancer

    pip Reporter
    23,361
    9,153
    Nov 21, 2005
    This issue is not anything to do with using the facebook "social login" scripts, that would be serious news spread all over if that had a problem. If you want the technical side of things about it all works then facebook have a nice developer guide https://developers.facebook.com/docs/facebook-login . This is more that facebook has people watching for password and username dumps and checks the results against their database, if it detects a match to a leaked database then it forces a password change.

    It is more likely that the OP registered for some poorly secured forum/website/shop/whatever and reused a password, whether intentionally or unintentionally (even if you do secure passwords are they combinations of the same word fragments and numbers that mean something to you? Most seem to use 3 words and maybe 4 numbers, however as most can not be bothered to learn a password longer than 9 or so characters that is a rather limited number of combinations). Sad poor security led to a leak somewhere and facebook got a dump from that.
     
    Tomato Hentai likes this.
  10. Tomato Hentai

    Tomato Hentai baja boner blast

    Member
    3,730
    6,019
    Oct 30, 2014
    Canada
    actually north korea. please send help
    Oh, I know that the social login scripts weren't the problem. I was just saying that if someone got into my Facebook account, they could get into a ton of other sites I use.
     
  11. FAST6191

    FAST6191 Techromancer

    pip Reporter
    23,361
    9,153
    Nov 21, 2005
    Yeah single point of failure is something to be avoided.
     
    Tomato Hentai likes this.
  12. Touko White

    Touko White Scarlet's Clone

    Member
    671
    1,409
    Jan 12, 2016
    United Kingdom
    England
    Try to guess my password to my computer, the hint:

    RED BEE 06/01
     
  13. smileyhead
    OP

    smileyhead Bow ties are cool.

    Member
    GBAtemp Patron
    smileyhead is a Patron of GBAtemp and is helping us stay independent!

    Our Patreon
    2,592
    5,522
    Aug 31, 2015
    Hungary
    Budakeszi, Hungary
    "I want to have sex with Cammy"?

    (Pls don't hate me for this. :rofl2:)
     
    Touko White likes this.
  14. Touko White

    Touko White Scarlet's Clone

    Member
    671
    1,409
    Jan 12, 2016
    United Kingdom
    England
    Nope. I would though...
     
    smileyhead likes this.
  15. smileyhead
    OP

    smileyhead Bow ties are cool.

    Member
    GBAtemp Patron
    smileyhead is a Patron of GBAtemp and is helping us stay independent!

    Our Patreon
    2,592
    5,522
    Aug 31, 2015
    Hungary
    Budakeszi, Hungary
    Lenny face intensifies.