[SingCERT] Advisory for 5 Million Gmail Password Dump

Published on Thursday, 11 September 2014 15:06

[ Background ]

A list of almost 5 million Gmail accounts and passwords were posted online on Tuesday.

Google has reset the affected accounts and affected users are advised to change their passwords immediately.


[ Recommendations ]

  • Use  a strong password. Users may refer to GoSafeOnline for creating a strong password.
  • Set up recovery options for your Google account. Users may refer to Google for the steps to set up the recovery options.
  • Set up 2-factor authentication (2FA) for your Google account. Users may refer to Google for the steps to set up 2FA.
  • Monitor and review your Gmail logins regularly. Users may refer to Google for the steps to review your logins.


[ References ]

http://googleonlinesecurity.blogspot.sg/2014/09/cleaning-up-after-password-dumps.html
http://mashable.com/2014/09/10/5-million-gmail-passwords-leak/