I couldn't help but wonder whether this has given us good reason to login via oauth with facebook or twitter to these sorts of sites?
After watching how Gawker handled all of this, I think I'd rather leave my security in the hands of the engineers at facebook/twitter/google/etc. To date I've avoided clicking "login with facebook" anywhere, but I may reconsider going forward considering those folks came out unscathed.
Seriously. I wish more sites would implement OAuth. It would cut down on the amount of crap I need to remember and it would enable me to cut off a site that has been compromised.
After watching how Gawker handled all of this, I think I'd rather leave my security in the hands of the engineers at facebook/twitter/google/etc. To date I've avoided clicking "login with facebook" anywhere, but I may reconsider going forward considering those folks came out unscathed.