![]() ![]() The sheer volume of records is frightening enough, but there's more. We need to prepare for the worst every time we sign up for another service or site. Their most recent find: a 41-gigabyte file that contains a staggering 1.4 billion username and password combinations. In this day and age, we can't afford to do that. Part of the problem is that we often treat online accounts "throwaways." We create them without giving much thought to how an attacker could use information in that account - which we don't care about - to comprise one that we do care about. If not on the site that was originally compromised, then at another one where the same person created an account. Because people tend to re-use their passwords - and because many don't react quickly to breach notifications - a good number of these credentials are likely to still be valid. That doesn't make the data any less useful to cybercriminals. Some of these breaches happened quite a while ago and the stolen or leaked passwords have been circulating for some time. 4iQ's screenshot shows dumps from Netflix, Last.FM, LinkedIn, MySpace, dating site Zoosk, adult website YouPorn, as well as popular games like Minecraft and Runescape. ![]() The usernames and passwords have been collected from a number of different sources. Where did the 1.4 billion records come from? The data is not from a single incident. 4StringsandCarolLee-EmotionsAway(ProtocultureRemixes)-(RNMR071)-WEB-2017-MMS.rar. Everything is neatly organized and alphabetized, too, so it's ready for would-be hackers to pump into so-called "credential stuffing" apps ESET-Smart-Security-4-username-and-password-Generator.rar.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |