News

Russian Hackers Collected 1.2 Billion Usernames and Passwords from 420,000 Websites

By

Security researchers revealed that Russian hackers were able to collect at least 1.2 billion username and password combinations, on top of at least 500 million email addresses.

The activities were discovered by Milwaukee-based security firm, Hold Security. Researchers detailed in a blog post how the Russian hackers, dubbed as the "CyberVor gang," were able to access confidential information from over 420,000 websites.

The Russian hackers initially obtained the credentials of the victims from the black market. They then sent spam to the victims to install malicious redirections on legitimate systems. It didn't focus on a single company, but targeted each website visited, affecting hundreds of thousands of websites.

The firm refused to reveal the names of the businesses affected, due to confidentiality agreements, as well as the further disclosure of vulnerable websites.

The New York Times requested a third party consultant to verify the authenticity of Hold Security's research. The expert confirmed that the information is accurate. Another expert also stated that big companies included in the list are aware that their websites were vulnerable.

"Hackers did not just target U.S. companies; they targeted any website they could get, ranging from Fortune 500 companies to very small websites," founder and chief information security officer of Hold Security, Alex Holden, told New York Times. "And most of these sites are still vulnerable."

Holden is scheduled to speak more about the security issues being faced by security websites in an industry conference this week. During his talk, Holden expects to get the attention of the small websites that he was not able to contact about their security issues.

Hold Security is the same firm that was identified during the data breach with Adobe Systems in October 2013, and also helped in tracking the Target breach that happened in February this year. Target's website became victim of the Eastern European hackers, who were able to get at least 40 million credit card numbers, and at least 70 million email addresses, home addresses, and phone numbers.

Tags
Russian Hackers
© 2024 HNGN, All rights reserved. Do not reproduce without permission.
Most Read
Pro-democracy activist Lee Yue-Shun, one of only two to walk away from the high-profile security case, attended the trial every day in carefully coordinated outfits

Acquitted 'Hong Kong 47' Defendant Sees Freedom As Responsibility

Ukrainian President Volodymyr Zelensky (L) has long called for US President Joe Biden to lift restrictions on Ukraine's use of the missiles in Russia
U.S. Closes Kyiv Embassy Amid Warning Of Significant Air Attack
Nikki Haley
Nikki Haley Blasts Trump's Cabinet Picks Tulsi Gabbard, RFK Jr. Over Controversial Stances
The 64-year-old former heart surgeon was a prominent TV personality championed by Oprah Winfrey
Trump Appoints TV Celebrity 'Dr. Oz' To Key US Health Post
Donald Trump told US voters he could 'fix' America
Laken Riley Murder Trial: Trump Reacts To Accused Jose Ibarra's Sentencing
Editor's Pick
OpenAI CEO Sam Altman fired off a social media post saying 'There is no wall' as fears arise over potential blockages to AI development
AI

Is AI's Meteoric Rise Beginning To Slow?

More than 800 million people are now diabetic, compared to less than 200 million in 1990, researchers say
Health

Global Diabetes Rate Has Doubled In Last 30 Years: Study

Rising temperatures due to global warming has led to mass bleaching events striking coral across the world
World

Nearly Half Of Tropical Coral Species Face Extinction: Report

A record 120 million people already live forcibly displaced by war, such as this camp in Syria
World

Climate Crisis Worsening Already 'Hellish' Refugee Situation: UN

Real Time Analytics