Reddit has send password reset emails while resetting about 100,000 accounts in last two weeks following what founding engineer Christopher Slowe (KeyserSosa) termed as “a general uptick in account takeovers (ATOs) by malicious (or at best spammy) third parties.”
This number of password resets comes just after a batch of 100 million LinkedIn emails and password combinations from a 2012 hack attack on LinkedIn was made public by the people behind the hack.
Slowe urged the users to make strong, unique password and not a password shared between multiple sites. He also asked the users to verify the email address since that is the only way Reddit passwords can be reset now.
Finally Christopher advised the users to check that account activity page to check for any unusual login activity on the account and in case of any malicious or strange activity, the users should reset their password. This was initially reported by PCMag and most of the things stated in the post by Slowe are common knowledge to be implemented.