620 million accounts stolen from 16 hacked websites now for sale on dark web, seller boasts

www.theregister.co.uk | 6/4/2018 | Staff
ArceusArceus (Posted by) Level 3
Click For Photo: https://regmedia.co.uk/2016/09/28/shutterstock_pirate.jpg

Exclusive Some 617 million online account details stolen from 16 hacked websites are on sale from today on the dark web, according the data trove's seller.

For less than $20,000 in Bitcoin, the following pilfered account databases can, we're told, be purchased from the Dream Market cyber-souk, located in the Tor network:

Dubsmash - MyFitnessPal - MyHeritage - ShareThis - HauteLook

Dubsmash (162 million), MyFitnessPal (151 million), MyHeritage (92 million), ShareThis (41 million), HauteLook (28 million), Animoto (25 million), EyeEm (22 million), 8fit (20 million), Whitepages (18 million), Fotolog (16 million), 500px (15 million), Armor Games (11 million), BookMate (8 million), CoffeeMeetsBagel (6 million), Artsy (1 million), and DataCamp (700,000).

Sample account records from the multi-gigabyte databases seen by The Register appear to be legit: they consist mainly of account holder names, email addresses, and passwords. These passwords are hashed, or one-way encrypted, and must therefore be cracked before they can be used.

Bits - Information - Site - Location - Details

There are a few other bits of information, depending on the site, such as location, personal details, and social media authentication tokens. There appears to be no payment or bank card details in the sales listings.

Who are the buyers?

Silos - Information - Spammers - Stuffers - Copies

These silos of purloined information are aimed at spammers and credential stuffers, which is why copies are relatively cheap to buy. The stuffers will take usernames and passwords leaked from one site to log into accounts on other websites where the users have used the same credentials.

So, for example, someone buying the purported 500px database could decode the weaker passwords in the list, because some were hashed using the obsolete MD5 algorithm, and then try to use the email address and cracked password combinations to log into, say, strangers' Gmail or Facebook accounts, where the email address and passwords have been reused.

Databases - Hacker - Vulnerabilities

All of the databases are right now being sold separately by one hacker, who says he or she typically exploited vulnerabilities...
(Excerpt) Read more at: www.theregister.co.uk
Wake Up To Breaking News!
A pox on both their houses!
Sign In or Register to comment.

Welcome to Long Room!

Where The World Finds Its News!