Millions of accounts on Yahoo and Gmail possibly breached

aia

Marauder
Joined
Mar 23, 2006
Posts
6,049
If you are using Yahoo or gmail or some other service like that you may want to change your email password; thinking of the chinese incident some year ago.


Big data breaches found at major email services
http://www.reuters.com/article/us-cyber-passwords-idUSKCN0XV1I6
Hundreds of millions of hacked user names and passwords for email accounts and other websites are being traded in Russia's criminal underworld, a security expert told Reuters. The discovery of 272.3 million stolen accounts included a majority of users of Mail.ru (MAILRq.L), Russia's most popular email service, and smaller fractions of Google (GOOGL.O), Yahoo (YHOO.O) and Microsoft (MSFT.O) email users, said Alex Holden, founder and chief information security officer of Hold Security.

Hold Security Recovers 272 Million Stolen Credentials From A Collector
http://holdsecurity.com/news/the_collector_breach/
At the end, this kid from a small town in Russia collected an incredible 1.17 Billion stolen credentials from numerous breaches that we are still working on identifying.

Stort hack mot Gmail, Hotmail och Yahoo – miljontals kontouppgifter på vift [Swedish]
http://pcforalla.idg.se/2.1054/1.65...-och-yahoo--miljontals-kontouppgifter-pa-vift
 

Eli

Prowler
Joined
Jan 5, 2006
Posts
1,271
Avatar Name
Elissia Eli Talor
It may be too soon to tell if this was a legitimate list of emails, but for certain everyone should be on high alert for potential phishing emails. If you aren't expecting it, DON'T CLICK IT.
 

aia

Marauder
Joined
Mar 23, 2006
Posts
6,049
It may be too soon to tell if this was a legitimate list of emails, but for certain everyone should be on high alert for potential phishing emails. If you aren't expecting it, DON'T CLICK IT.
Each time I get an email from "postnord" (new name after Swedish and danish post service merged) telling me that I got a package waiting I'm 99.9% sure it's just an "ad" for the latest version of some ransomware.

And of course, then there is the email from "apple" telling me I need to "verify" my Apple Store account. (What it really means: "Give me your passcode so we can empty your apple store credits").

Or, "We need to verify your bank details, give us your name, card number, expiration and CVV code and it's all going to be fine".

And who haven't seen this: ("Planet49 GmbH"): "How many triangles do you see? Win an iphone", which means "You really don't have a chance to win, but if you give us your email address we'll spam the hell out of you and give your phone number to every telemarketeer in your country so they can call you for the rest of your Life".

For entropia, the easiest and most obvious trap is having same password on your gmail/Yahoo/whatever mail account and entropia. It's probably a no brainer for someone with a list of email adresses (=entropia usernames) and passwords to try them to fish for accuonts where the same password is used.
 
Last edited:
Top