Nice. Now I'd like to know WHICH password got leaked. That way the breach impact... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		subscribed 15 days ago \| parent \| context \| favorite \| on: Two billion email addresses were exposed Nice. Now I'd like to know WHICH password got leaked. That way the breach impact can quickly be limited. Troy probably would share that information for a price. Not sure whom to pay though - the "good" guy who won't say a word, or a criminal who will happily share it with me? It's possible the latter would be cheaper too.

Jaxan 15 days ago [–]

They don’t store email addresses with password in the database. That would be way too risky. These are separate databases, so you can lookup your email address, and separately check a password.

cestith 12 days ago | [–]

I think for passwords they only store a hashed version.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact