AI DevwWrld CyberDSA Chatbot Summit Cyber Revolution Summit CYSEC Global Cyber Security & Cloud Expo World Series Digital Identity & Authentication Summit Asian Integrated Resort Expo Middle East Low Code No Code Summit TimeAI Summit

Data leak: 71 million online credentials exposed

The serious security breach reveals the need for enhanced protective measures for users

A hacker has leaked 71 million user credentials online from major platforms such as Facebook and Roblox. The data includes emails and 25 million unencrypted passwords. We recommend using strong passwords and two-factor authentication.

This pill is also available in Italian language

According to the latest revelations from Troy Hunt of 'Have I Been Pwned?', 71 million user credentials belonging to major platforms such as Facebook, Roblox and others have emerged online. This information was spread via the hacker forum Breach Forums. With 319 files totaling 104 GB, the scope of this breach is notable and deserves in-depth analysis to understand the impact on cybersecurity.

Detail of the compromised information

The leaked data collection includes a sizable volume of email addresses, with over 70 million digital identities exposed. From a random selection of 1000 samples, Hunt identified that more than 65% of the emails were already present in the HIBP database. A worrying detail emerged: around 25 million passwords were in unencrypted form, an unusual detail that underlines the seriousness of the data breach.

Making contact and verifying authenticity

A confirmation of the authenticity of the breach came following a straightforward process: Hunt contacted some owners of the leaked email addresses, who reconfirmed the validity of the listed credentials. This has raised further concerns about the security of personal information online and has once again highlighted the importance of verifying the security of your credentials.

Tips for protecting your online credentials

The passwords included in the data leak appear to have been the subject of "credential stuffing", a type of attack in which previously stolen credentials are used for unauthorized access. To increase your digital security, it is suggested to use strong keywords, composed of a variety of characters and periodically updated. Furthermore, the adoption of advanced security measures such as two-factor authentication and Passkeys, which represent the new industrial standard against sophisticated phishing and data compromise techniques, becomes essential.

Follow us on Instagram for more pills like this

01/19/2024 02:54

Marco Verro

Last pills

Google Cloud security predictions for 2024: how AI will reshape the cybersecurity landscapeFind out how AI will transform cybersecurity and address geopolitical threats in 2024 according to Google Cloud report

AT&T: data breach discovered that exposes communications of millions of usersDigital security compromised: learn how a recent AT&T data breach affected millions of users

New critical vulnerability discovered in OpenSSH: remote code execution riskFind out how a race condition in recent versions of OpenSSH puts system security at risk: details, impacts and solutions to implement immediately

Discovery of an AiTM attack campaign on Microsoft 365A detailed exploration of AiTM attack techniques and mitigation strategies to protect Microsoft 365 from advanced compromises