Topic: Russian hackers steals 1.2 BILLION credentials (Read 1574 times)
Ok, seriously, why do people do this crap (stealing passwords and other info)? It just wastes everyone's time. There are so many better, constructive things that people can do with their lives.
Websites this big should have the profits the atleast put a couple million in security.
Quote
Each time a computer visited a site, it attempted a "SQL injection," in which items like search and comment fields are filled with code meant to force the site's database to spit out its contents
sounds like that private video shit on facebook
SQL injection still works after all this time, sloppy sloppy programmers
Looks like this revelation's been rehashed from Feb. 28, 2014.
http://www.scmagazine.com/files-containing-360-million-credentials-125-billion-email-addresses-located-on-deep-web/article/336211/
Would it surprise you to learn that the following three are all bitcoiners?: Alex Holden; Brian Krebs; Adam Greenberg.
https://twitter.com/writingadam
https://twitter.com/writingadam/status/443501118782709761
I think most of these accounts were likely duplicates and probably from websites with really weak security.
They hacked data from 420,000 websites and you can't be so sure about the only sites with weak security was targeted any website can have vulnerability like Khalil hacked Mark Zuckerberg's fb wall last year, although stealing login credential will require sneaking into database but no one can say its not possible with big fishes out there.
I think most of these accounts were likely duplicates and probably from websites with really weak security.
Imagine what one could glean from the memory card of one of these babies:
http://smallbusinesssolutions.blogs.xerox.com/files/2011/12/Scanning.jpg
http://www.techrepublic.com/blog/tr-dojo/police-medical-records-found-on-used-copy-machines/?tag=content%3BleftCol
Probably not much. It is pretty rare that passwords or other confidential information is actually copied with a copier. Most of this kind of info is usually stored digitally. http://smallbusinesssolutions.blogs.xerox.com/files/2011/12/Scanning.jpg
http://www.techrepublic.com/blog/tr-dojo/police-medical-records-found-on-used-copy-machines/?tag=content%3BleftCol
Imagine what one could glean from the memory card of one of these babies:
http://www.techrepublic.com/blog/tr-dojo/police-medical-records-found-on-used-copy-machines/?tag=content%3BleftCol
http://www.techrepublic.com/blog/tr-dojo/police-medical-records-found-on-used-copy-machines/?tag=content%3BleftCol
Proofs? Money stealing?
No damaged part?
Anti-Russian image making company.
No damaged part?
Anti-Russian image making company.
This makes me want to get a real offline wallet..
It looks like you are around here for a while now, the second week I was in this forum I realized that and got an offline paper wallet although I'm still keeping some of it online and feel so insecure about it even after having all the necessary securities . Every day there is a new story of hacking, the one I remember in recent times is " Klee's " who lost some 1100btc so if you haven't setup an offline wallet yet go for it ASAP , better choose paper wallet or similar. 
This makes me want to get a real offline wallet..
Ok, seriously, why do people do this crap (stealing passwords and other info)? It just wastes everyone's time. There are so many better, constructive things that people can do with their lives.
Money
It's a daytime job.
If I send 100000 spam messages and just a couple of them succed I've earned enough.
Ok, seriously, why do people do this crap (stealing passwords and other info)? It just wastes everyone's time. There are so many better, constructive things that people can do with their lives.
Stealing is easy money. Working hard is not.
The hackers are going to use them for spam e-mail and not stealing the financial information.
It pays more to have those accounts in use than to reveal the vulnerability.
There is worry among some in the security community that keeping personal information out of the hands of thieves is a losing battle.
It pays more to have those accounts in use than to reveal the vulnerability.
There is worry among some in the security community that keeping personal information out of the hands of thieves is a losing battle.
Craigslist ad:
For sale: I million plain text passwords. ONLY 1.2 billion available. We accept Bitcoin.
Just tell me the price.. and take my btc..! For sale: I million plain text passwords. ONLY 1.2 billion available. We accept Bitcoin.
Ok, seriously, why do people do this crap (stealing passwords and other info)? It just wastes everyone's time. There are so many better, constructive things that people can do with their lives.
Some do it for fun, some do it to defame some particular website in this case they targeted 1.2 billion login credentials and some of main stream websites in total 420,000 websites. They can make money out of it too.. 500 million email addresses and 1.2billion they can sell it , exploit it in every possible manner, blackmailing... and much more..
Craigslist ad:
For sale: I million plain text passwords. ONLY 1.2 billion available. We accept Bitcoin.
Ok, seriously, why do people do this crap (stealing passwords and other info)? It just wastes everyone's time. There are so many better, constructive things that people can do with their lives.
Some do it for fun, some do it to defame some particular website in this case they targeted 1.2 billion login credentials and some of main stream websites in total 420,000 websites. They can make money out of it too.. 500 million email addresses and 1.2billion they can sell it , exploit it in every possible manner, blackmailing... and much more..
Ok, seriously, why do people do this crap (stealing passwords and other info)? It just wastes everyone's time. There are so many better, constructive things that people can do with their lives.
Russian hackers group stole 1.2 billion usernames and passwords and 500 million email addresses
If this is true, Its time to change your Passwords
http://nbcnews.to/1pWDt0Z
If this is true, Its time to change your Passwords
http://nbcnews.to/1pWDt0Z
Such vulnerabilities are well known and fairly easily fixed, but thousands of websites clearly have yet to do so.
that means major sites dint leak passwords..
Sometimes there is a public leak of passwords or private contend in major sites.
Yes, they make mistakes with their security too.
Or put a two factor authentication/sms verification on all important applications.
2FA is recommended in every service which provides it but never feel so secure about it even 2FA can't save you when they come for you..! 
The problem is, not every website provide 2FA...
Jump to: