Slashdot Mirror

← Back to Stories (view on slashdot.org)

Alleged Massive Account and Password Seizure By Russian Group

Posted by Unknown on from the security-through-well-everyone-else-is-compromised-too dept.

New submitter Rigodi (1000552) writes "The New York Times reported on August 5th that a massive collection of stolen email passwords and website accounts have been accumulated by an alleged Russian "crime ring". Over 1.2 billion accounts were compromised ... the attack scheme is essentially the old and well known SQL injection tactic using a botnet. The Information has been made public to coincide with the Blackhat conference to cause a debate about the classic security account and password system weaknesses, urging the industry to find new ways to perform authentication. What do Black Hat security conference participants have to say about that in Vegas?

2 of 126 comments (clear)

  1. Re:big whoop by timrod · · Score: 4, Informative

    The use is that you now have a database of 1.2 billion passwords that can be fed into a brute force cracker and used to make "educated guesses" to crack passwords.

  2. Re:Is this me? by LordLimecat · · Score: 3, Informative

    Courts have ruled that it is not possible to steal something from yourself, so they are mutually exclusive.