- Publish Date
- Wednesday, 1 June 2016, 1:51PM
Despite falling out of vogue years ago, MySpace - that old precursor to Facebook - still has details on more user accounts than the United States has people.
And now a hefty chunk of those account credentials has been leaked to the entire Internet, in a humbling reminder that the Matchbox Twenty-inspired username you probably made in high school is still worth a heck of a lot to companies and criminals.
As many as 360 million MySpace accounts turned up for sale Friday in a 33-gigabyte dump online, according to reports that were confirmed Monday by MySpace's parent, Time Inc.
The leak includes passwords, email addresses and usernames that were swiped from MySpace in a hack dating back to June 2013, before MySpace made a site redesign that closed some security gaps.
In a blog post, MySpace said it's disabled the affected passwords so that nobody can use the leaked credentials to gain unauthorized access to accounts.
It's unclear how many of the accounts in the MySpace hack were still "active," in the sense that they belong to people who continue to log into the service today. But chances are at least some of these accounts hadn't been touched for years.
The reason this makes you vulnerable is the same reason experts say you shouldn't use the same username and password for every online service - it makes it easy to take one set of stolen credentials and plug them into others, potentially gaining access to the entire portfolio of your digital life.
In that light, it seems there's a strong case for deleting your old, unused accounts - or at least creating a throwaway email address to associate with the services you don't use so that they're insulated from the email addresses you use for more important things.
Not only does it potentially cut down on the number of credentials you have to remember (though hopefully you're solving that by using a password manager, right?), but it helps limit your exposure to hackers.