Russian hackers stole 1.2 bn passwords (Update)

Aug 05, 2014
A Russian hacker group has stolen an estimated 1.2 billion Internet credentials from major US companies and others around the world, the New York Times reports

Russian hackers stole 1.2 billion Internet credentials from major US companies and others around the world in what is likely the biggest data breach ever, security researchers said Tuesday.

The US firm Hold Security said the gang which it dubbed "CyberVor" collected confidential user names and passwords were stolen from some 420,000 websites, ranging from household names to small Internet sites.

"As long as your data is somewhere on the World Wide Web, you may be affected by this breach," Hold said in a statement on its website.

"Your data has not necessarily been stolen from you directly. It could have been stolen from the service or goods providers to whom you entrust your personal information, from your employers, even from your friends and family."

The security firm, which specializes in research on large data breaches, said the cybergang acquired databases of stolen credentials from fellow hackers on the black market, and then installed malware that allowed them to gain access to many websites and social media accounts.

"To the best of our knowledge, they mostly focused on stealing credentials, eventually ending up with the largest cache of stolen personal information, totaling over 1.2 billion unique sets of e-mails and passwords," the researchers said.

"The CyberVors did not differentiate between small or large sites. They didn't just target large companies; instead, they targeted every site that their victims visited. With hundreds of thousands sites affected, the list includes many leaders in virtually all industries across the world, as well as a multitude of small or even personal websites."

The researchers dubbed the hacker group CyberVor, using the Russian word "vor," for thief.

The New York Times first reported the breach, and said the group of hackers based their operation in south central Russia, a flanked by Kazakhstan and Mongolia, the report said.

The Times said the group includes fewer than a dozen men in their 20s and that their computer servers are believed to be in Russia.

"There is a division of labor within the gang," Hold Security founder Alex Holden is quoted as saying.

"Some are writing the programming, some are stealing the data."

Explore further: France's Orange hit by hackers data raid

add to favorites email to friend print save as pdf

Related Stories

France's Orange hit by hackers data raid

May 07, 2014

Hackers have stolen the personal data of 1.3 million customers of French telephone company Orange, in the second major breach of its kind in a matter of months.

Putin signs law seen as crimping social media

Jul 22, 2014

President Vladimir Putin on Tuesday signed a law requiring Internet companies to store all personal data of Russian users at data centres in Russia, a move which could chill criticism on foreign social networking ...

Yahoo email account passwords stolen (Update 2)

Jan 30, 2014

Usernames and passwords of some of Yahoo's email customers have been stolen and used to gather personal information about people those Yahoo mail users have recently corresponded with, the company said Thursday.

Hackers target Bethesda videogame studio

Jun 13, 2011

US videogame studio Bethesda Softworks on Monday said its websites were hit with a cyberattack over the weekend and warned that hackers may have stolen some user data.

Recommended for you

China condemns 'cyber terrorism' in wake of Sony attack

1 hour ago

China's foreign minister condemned all forms of "cyber terrorism" in talks with his American counterpart, a statement said Monday, as the US accused Beijing's ally North Korea with being behind a cyber attack on Sony Pictures.

BlackBerry rides with Boeing on self-destruct phone

1 hour ago

The news from Reuters on Friday came as no shock to those who know Blackberry's strong rep for security (John Chen, the company's CEO, is not shy about promoting the company's branding message of safety. ...

US seeks China's help after cyberattack

Dec 21, 2014

The United States is asking China for help as it weighs potential responses to a cyberattack against Sony Pictures Entertainment that the U.S. has blamed on North Korea.

User comments : 1

Adjust slider to filter visible comments by rank

Display comments: newest first

kochevnik
1 / 5 (1) Aug 06, 2014
USA and NATO declare war on Russia, then whine about extra penis enlargement SPAM from Russia

Please sign in to add a comment. Registration is free, and takes less than a minute. Read more

Click here to reset your password.
Sign in to get notified via email when new comments are made.