mk1-forum.net

Anyone else experienced this type of message? It came on my browser (Mac Safari) as a data breach, so I logged in and changed my password directly on the site in case it was a scam of some kind?

No, but on my iPhone, theres a new section under Passwords, and it says 201 of my passwords are affected by a data leak, and they should be changed!

AndyPen wrote: ↑Fri Oct 13, 2023 10:29 am Anyone else experienced this type of message? It came on my browser (Mac Safari) as a data breach, so I logged in and changed my password directly on the site in case it was a scam of some kind?

No, I haven't got this. I am pretty sure it is scam. When you hover over the blue coloured link - what link address does it show?

Probably best to ask MS.

No it is not a scam, it is Apple's way of looking at the passwords saved in their browser Safari.

As I said, I had 201 passwords which it said have been compromised, and I'm not surprised, as I was hacked years ago and the one password I used to use, as easy to remember, was reused lots of times on various websites, that I don't care about.

So my guess is, the password AndyPen uses for Minispares.com is a password he has re-used on other websites, one of which had a data leak. Hence that password is now on a list of comprised passwords and Safari is suggesting to change it, just in case.

Here is an article explaining it, from a trusted publication.

https://www.macworld.com/article/553490 ... rning.html

As the article states "Apple pushes password alerts to Safari’s Start Page, which may seem alarming, but it’s legitimate."

Just for info - it was a very unique password that I’ve not used elsewhere. I checked with Minispares and changed it - in case

Logically, if you have only used it on the the MS website and it has appeared in a data leak, then the data leak would be Minispares‘s data leak, wouldn’t it ?
Probably nothing to worry about, but might be an idea to change PW anyway.

Yes that’s true, can’t explain that one.

Article below about data leaks and passwords etc, I won’t link to it direct as it looks dodgy, but I assure you it’s not, no.2 in this article, is about the “Have I been Pwned” website, which is a genuine website set up by a security researcher which has a database of all the data leaked passwords.

https://www.zdnet.com/article/were-you- ... w-to-tell/

Explanation of word Pwned:
The word "pwned" has origins in video game culture and is a leetspeak derivation of the word "owned", due to the proximity of the "o" and "p" keys. It's typically used to imply that someone has been controlled or compromised.