Trapster Hacked: 10 Million Mobile Users Potentially Affected

Trapster Hacked: 10 Million Mobile Users Potentially Affected

Summary: Popular online speed trap locator Trapster has been hacked and is notifying its 10 million users their email and password may have been compromised.

SHARE:
TOPICS: iPhone
10

Popular online speed trap locator Trapster has been hacked and is notifying its 10 million users their email and password may have been compromised:

Dear Trapster User:

The Trapster team has recently learned that our website has been the target of a hacking attempt, and it is possible that your email address and password were compromised.  We have taken, and continue to take, preventative measures to avoid future incidents but we are recommending that you change your Trapster password.  As always, Trapster recommends that you use distinctive passwords for each site you visit, but if you use the same password on Trapster that you use on other services, we recommend that you change your password on those services as well.

For information on how to reset your password or improve the security of your passwords for your Internet usage, please click FAQs.

Sincerely,

The Trapster Team

Trapster users should immediately change login credentials, and be alert for other services that may be affected if the same email/password combination is used in multiple places (which this should show you should never do).

Hat tip to Jason Perlow for the tip.

Topic: iPhone

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

Talkback

10 comments
Log in or register to join the discussion
  • Re

    "Be alert for other services that may be affected if the same email/password combination is used in multiple places (which this should show you should never do)"

    Like I can remember 30+ passwords which I also have to change periodically. And if I can't remember then what's the point of having a password. If I store it somewhere, and if that is lost then all my accounts are vulnerable. Then I have to remember what accounts I had and so I also need to keep a copy of my master password list elsewhere. If I keep it on a computer, then I have a single file with all my passwords which may be hacked as well...........
    pol999
    • RE: Trapster Hacked: 10 Million Mobile Users Potentially Affected

      pw: imdumbtrapster8
      pw: imdumbzdnet5
      u may see a pattern and it doesnt have anything to do with imdumb
      bspurloc
  • @pol999

    The problem is that they ever stored passwords in plain text. Seriously.
    ALISON SMOCK
    • RE: Trapster Hacked: 10 Million Mobile Users Potentially Affected

      cuz its really really really hard to use the application u just hacked to reverse the encryption tech used to store the pw's
      bspurloc
      • RE: Trapster Hacked: 10 Million Mobile Users Potentially Affected

        @bspurloc

        Typically the application does not reverse the encryption. When initially storing the password given by the user, it is passed through a one-way hash. When the use logs back in, the same is done again.

        One-way hashes can be 'hacked' by trying brute force methods to guess passwords until you get the same hash as was stored. Just make sure your password is difficult enough that it isn't worth the time.

        As a side point, I use different passwords on different sites. I don't bother to remember them, because I use a one-way hash in my mind. Sort of a cockey-rhyming slang with a little math. If you figure out my formula, I'm screwed.. but that would take individual focus and wouldn't be worth the effort.
        JamesKelley
    • RE: Trapster Hacked: 10 Million Mobile Users Potentially Affected

      @stebidri Amen to that. Its so very easy to hash the password and store the hash, then to store a password where it could be hacked. Hashes cannot be reversed.
      Chuck1411
  • sad

    That is very sad !!!
    http://www.hiwaar.org/vb/forum.php
    hiwaarco
  • YES

    YES
    SMOKCHICAGO
  • The heat is on, scumbags, they are coming for you

    Personally, one screw up is all I need to avoid Trapster for good. Hopefully I am safe because I used a unique email address for Trapster (I have a way to be able to make up addresses on the fly).

    On the other hand, I assume and hope the perpetrators are found and prosecuted. Even if Trapster did not do everything it could to protect our information it doesn't mean it can be stolen without consequence. The heat is on, scumbags, they are coming for you.
    Schoolboy Bob
  • RE: Trapster Hacked: 10 Million Mobile Users Potentially Affected

    I have Trapster on my iPhone and couldn't remember ever setting up an account for any reason. Just checked and never did so certainly am not going to now.
    non-biased