Facebook CEO Mark Zuckerberg might have broken the cardinal rule of security by using the same password in multiple places. The executive’s Pinterest and Twitter accounts were hacked over the weekend by a hacker collective named “OurMine Team” who made it publicly clear that Zuckerberg’s accounts had been hacked. OurMine likely gained access to the accounts through a massive trove of LinkedIn passwords and usernames that were collected during a breach in 2012. The massive extent of that breach was only just recently realized.
“Hey, @finkd You were in LinkedIn Database with the password “dadada” ! DM for proof…” one Tweet from Zuckerberg’s Twitter account read, according to a screenshot grabbed by @Ben_Hall. It appears Zuck may have used that password for Pitnerest, too, where his profile was changed to read “Hacked By OurMine Team.” The hackers don’t seem to have caused any other real damage to Zuckerberg’s accounts, and early reports that Zuck’s Instagram was hijacked were shot down by Facebook PR.
“No Facebook systems or accounts were accessed,” Facebook told VentureBeat, which first spotted the hack. “The affected accounts have been re-secured.” The Facebook CEO’s is just one high-profile account that has been accessed since the major LinkedIn breach, and it’s a reminder to all that we should change our LinkedIn passwords as soon as possible.
But, anyway, for fun we decided to create a list of 10 passwords Zuckerberg should have used instead of “dadada.”