- Super Spammer
Joined: 22 Oct 2013 Karma :
|
Posted: 17:40 - 06 Feb 2019 Post subject: |
|
|
I hope you keep the really complex passwords in a little book marked “passwords” right by your PC, so you don’t forget it!
I have loads, far too many to memorise, as my customers expect me to memorise all theirs for them. ____________________ TZR250 2MA road, TZR250 1KT road, TZR250 2MA race, TDR250, YZF-750R Boost colours.
Jaguar S Type 3.0 V6 Sport R, VW Transporter T5 GP LWB Shuttle 140ps DSG. |
|
M.C Super Spammer
Joined: 29 Sep 2015 Karma :
|
Posted: 17:51 - 06 Feb 2019 Post subject: |
|
|
I wish particularly old people would use more basic passwords, half of the people I unwillingly help out have complicated ones they forget then I have to help them reset them And writing them down doesn't help, as it's always in a notebook full of nonsense with old passwords scribbled down. |
|
Ste Not Work Safe
Joined: 01 Sep 2002 Karma :
|
Posted: 19:45 - 12 Feb 2019 Post subject: |
|
|
Quote: | I'd love to know how much these companies pay or think a list of emails is worth. |
620 million accounts stolen from 16 hacked websites now for sale on dark web, seller boasts
Some 617 million online account details stolen from 16 hacked websites are on sale from today on the dark web, according to the data trove's seller.
For less than $20,000 in Bitcoin, it is claimed, the following pilfered account databases can be purchased from the Dream Market cyber-souk, located in the Tor network.
Sample account records from the multi-gigabyte databases seen by The Register appear to be legit: they consist mainly of account holder names, email addresses, and passwords. These passwords are hashed, or one-way encrypted, and must therefore be cracked before they can be used.
There are a few other bits of information, depending on the site, such as location, personal details, and social media authentication tokens. There appears to be no payment or bank card details in the sales listings.
Who are the buyers?
These silos of purportedly purloined information are aimed at spammers and credential stuffers, which is why copies are relatively cheap to buy. The stuffers will take usernames and passwords leaked from one site to log into accounts on other websites where the users have used the same credentials.
So, for example, someone buying the purported 500px database could decode the weaker passwords in the list, because some were hashed using the obsolete MD5 algorithm, and then try to use the email address and cracked password combinations to log into, say, strangers' Gmail or Facebook accounts, where the email address and passwords have been reused.
All of the databases are right now being touted separately by one hacker, who says he or she typically exploited security vulnerabilities within web apps to gain remote-code execution and then extract user account data. The records were swiped mostly during 2018, we're told, and went on sale this week.
The seller, who is believed to be located outside of the US, told us the Dubsmash data has been purchased by at least one person.
...
Dubsmash: 161,549,210 accounts for 0.549 BTC ($1,976)
500px: 14,870,304 accounts for 0.217 BTC ($780)
EyeEm: 22,360,765 accounts for 0.289 BTC ($1,040)
8fit: 20,180,667 accounts for 0.2025 BTC
Fotolog: 16 million accounts for 0.52 BTC ($1,872)
Animoto 25,402,283 accounts for 0.318 BTC ($1,144)
MyHeritage 92,284,478 accounts for 0.549 BTC ($1,976)
MyFitnessPal 150,633,038 accounts for 0.289 BTC ($1,040)
Artsy 1,070,000 accounts for 0.0289 BTC ($104)
Armor Games 11,013,617 accounts for 0.2749 BTC ($988)
Bookmate 8,026,992 accounts for 0.159 BTC ($572)
CoffeeMeetsBagel 6,174,513 accounts for 0.13 BTC ($468)
DataCamp 700,000 accounts for 0.013 BTC ($46.8)
HauteLook 28 million accounts for 0.217 BTC ($780)
ShareThis 41,028,098 accounts for 0.217 BTC ($780)
Whitepages 17,775,679 accounts for 0.434 BTC ($1560)
The seller told The Register they have as many as 20 databases to dump online, while keeping some others back for private use, and that they have swiped roughly a billion accounts from servers to date since they started hacking in 2012.
https://www.theregister.co.uk/2019/02/11/620_million_hacked_accounts_dark_web/ |
|
M.C Super Spammer
Joined: 29 Sep 2015 Karma :
|
Posted: 19:56 - 12 Feb 2019 Post subject: |
|
|
|
|