Skip to main content

“Have I Been Pwned?” owner uncovers 13 million plaintext passwords leaked from free webhost

have i been pwned owner uncovers 13 million plaintext passwords leaked from free webhost is a safe password even possible we
guteksk7/Shutterstock
000webhost, which implores users to “forget the stereotype that free hosting is unreliable” on its homepage, may need to re-think that bit of copy.

The free web host, which was both storing and transferring user information in plaintext, has been compromised. Users’ email address, passwords, and IP addresses are all being bought and sold by hackers. Passwords have been reset by the host, but anyone who used their passwords for other sites should change those as well.

This took a lot of work to get to the bottom of, hard to fathom hard bad this 000webhost breach is on many levels: https://t.co/xzRxvSTfiZ

— Troy Hunt (@troyhunt) October 28, 2015

The leak was made public today in an extensive blog post written by web security expert Troy Hunt, who runs the site HaveIBeenPwned. The site lets anyone search a database of known leaks to find out if their personal information has ever been compromised, and occasionally people email him about unknown leaks.

“Hey,” a message Hunt received said, “approximately 5 months ago, a certain hacker hacked into 000webhost and dumped a 13 million database consisting of name, last name, email and plaintext password,”

Hunt looked into the claims, found out they were legitimate, then attempted to contact 000webhot to fill them in (Hunt doesn’t want HaveIBeenPwned to be a service that announces leaks).

Getting in touch with 000webhost, however, proved impossible –he basically got back only generic helpdesk advice. Eventually Hunt asked Forbes journalist Thomas Fox-Brewster for help getting in touch with the company, but they didn’t get back to him either. They did, however, change users’ passwords en masse – without informing anyone why.

Only after Fox-Brewster published an article about the breach, and Hunt published his blog post, did anyone at 000webhost publicly acknowledge the breach. A Facebook post informed users, along with a small note on the company’s website.

“Due to security breach, we have set www.000webhost.com website on maintenance until issues are fixed,” the homepage currently says. FTP access is reportedly cut off until November 10.

So, is free hosting reliable? Hunt, for his part, thinks you should be skeptical.

“When you see free or really cheap hosting and wonder why AWS / Azure / et al seem expensive, think of what corners they may be cutting,” he tweeted.

Probably good advice.

Justin Pot
Former Digital Trends Contributor
Justin's always had a passion for trying out new software, asking questions, and explaining things – tech journalism is the…
Best Surface Laptop and Surface Pro deals: From $520
Microsoft Surface Go 3 sitting on table.

If you're a Windows user, then you're probably familiar with something like the Dell XPS lineup of thin and light laptops, and while they're great, they may not be for you. Well, one great alternative is Microsoft's lineup of Surface Laptops, which are pretty much the same concept as the Dell XPS and the MacBook Air when it comes to thin-and light laptops. Unfortunately, most of the currently available Surface laptops are a bit older as we're waiting for the Surface Pro 10 and Surface Laptop 6, but there are still some good options out there, including refurbished ones.

We've collected some of our favorite deals below, but if you're still looking for something a bit different, check out these laptop deals and 2-in-1 laptop deals, and maybe even these MacBook deals
Microsoft Surface Go 3 -- $520, was $630

Read more
OpenAI Project Strawberry: Here’s everything we know so far
a strawberry

Even as it is reportedly set to spend $7 billion on training and inference costs (with an overall $5 billion shortfall), OpenAI is steadfastly seeking to build the world's first Artificial General Intelligence (AGI).

Project Strawberry is the company's next step toward that goal, and as of mid September, it's officially been announced.
What is Project Strawberry?
Project Strawberry is OpenAI's latest (and potentially greatest) large language model, one that is expected to broadly surpass the capabilities of current state-of-the-art systems with its "human-like reasoning skills" when it rolls out. It just might power the next generation of ChatGPT.
What can Strawberry do?
Project Strawberry will reportedly be a reasoning powerhouse. Using a combination of reinforcement learning and “chain of thought” reasoning, the new model will reportedly be able to solve math problems it has never seen before and act as a high-level agent, creating marketing strategies and autonomously solving complex word puzzles like the NYT's Connections. It can even "navigate the internet autonomously" to perform "deep research," according to internal documents viewed by Reuters in July.

Read more
This MSI gaming laptop with RTX 4060 just dropped below $1,000
The MSI GF63 gaming laptop against a white background.

Gamers with a maximum budget of $1,000 can still get a powerful device from today's gaming laptop deals, as there are amazing offers like Target's $201 discount for the MSI Thin GF63. From its sticker price of $1,200, it's down to just $999, which is a reasonable price for a machine that's powered by the Nvidia GeForce RTX 4060 graphics card. You're going to have to be quick with your purchase if you're interested in this gaming laptop though, as we're not sure how long the stocks that are up for sale will last.

Why you should buy the MSI Thin GF63 gaming laptop
The MSI Thin GF63 gaming laptop is ready to play the best PC games with its Nvidia GeForce RTX 4060 graphics card, which is paired with the 12th-generation Intel Core i7 processor and 16GB of RAM that's considered by our guide on how much RAM do you need as the best place to start for gaming. It's not going to match the performance of the top-tier models of the best gaming laptops, but the MSI Thin GF63 will be more than enough for most gamers.

Read more