logo
Mobile
Smartphones
Tablets
Smartwatch & Wearables
Telco
PC
Laptops
Monitors, Input Devices & Accessories
PC Components
Storage
Networking & Security
Lifestyle
Audio
Video
Photography
Smart Home
AI
Cars
Apps & Software
Entertainment
Gaming & Culture
TV & Movies
Guides
How To
Tips
DealsEditor's Picks
Follow Us
Connect with us and stay updated with the latest news and promotions from us! Sign up now!
New Articles

MegaCracker Exposes Mega Passwords

The efforts of a researcher have revealed a weakness in the security of the newly launched Mega service. With the help of the MegaCracker tool, you can extract the password for an account using the confirmation email sent over by Mega for the activation of your account.

By Hurrairah bin Sohail - 

Source: MegaCracker

Source: MegaCracker

With great hype comes great scrutiny. Kim Dotcom's latest venture Mega, which is another cloud storage service, quickly ballooned to over 1 million users after its launch. But the success has also drawn the attention of other parties as well.

Researcher Steve "Sc00bz" Thomas realized there was a weakness in the security of Mega and has released a tool called MegaCracker. This software is capable of extracting the password for a Mega account from the confirmation email. Seeing that the emails are not encrypted, phishing someone's confirmation email should not be too hard for the dedicated.

Apparently the program only isolates the password hash from the confirmation email. Hackers and phishers will still have to use a brute force password guesser to uncover the actual password. Obviously if the password you chose had low strength, the guesswork won't take much time. 

Source: TobTu via Arstechnica

Our articles may contain affiliate links. If you buy through these links, we may earn a small commission.

Tags

hackingpasswordmega
Share this article