Regarding LiveJournal Security
We feel the necessity to address recent questions regarding LiveJournal security.
We consider security our main priority and are constantly paying particular attention to it when developing new features and updating old ones. We are keeping track of the information distributed in the Internet and want you to feel safe. We analyzed data appeared and can say that the data may be compiled using different sources and mostly falsified.
We encountered cases of brute-force attacks in 2011-2012. We have implemented different counteraction and improvements since then to help ensure the security of accounts. Within the past 8 years we have:
- switched to HTTPS for all pages;
- improved password storage mechanics;
- implemented suspicious activity detecting system which tracks and block suspicious logins;
- maintained monitoring for vulnerabilities both within LiveJournal's code and third-party software employed by us;
- recommended all of our users to update their passwords at least once per 6 months and to use different passwords for different services.
Additionally, we are currently developing a two-factor authorization.
Following these security procedures, we have also disabled passwords that haven't been updated for several years. If your password has been disabled, you can set a new one using the "Forgot password" option in the login form. We apologize for any inconvenience, but this was a necessary measure.
Should you need assistance in regaining access to your account, please submit a support request.