Slashdot Mirror

← Back to Stories (view on slashdot.org)

Over 25 Million Accounts Stolen After Mail.ru Forums Hacked (zdnet.com)

Posted by msmash on from the security-blues dept.

An anonymous reader writes: Over 25 million accounts associated with forums hosted by Russian internet giant Mail.ru have been stolen by hackers. Two hackers carried out attacks on three separate game-related forums in July and August. One forum alone accounted for almost half of the breached data -- a little under 13 million records; the other two forums making up over 12 million records. The databases were stolen in early August, according to breach notification site LeakedSource.com, which obtained a copy of the databases. The hackers' names aren't known, but used known SQL injection vulnerabilities found in older vBulletin forum software to get access to the databases. An analysis of the breached data showed that hackers took 12.8 million accounts from cfire.mail.ru; a total of 8.9 million records from parapa.mail.ru, and 3.2 million accounts from tanks.mail.ru. The hackers were able to obtain usernames, email addresses, scrambled passwords, and birthdays.

25 comments

  1. A hack you say? by Anonymous Coward · · Score: 0

    Must have been running some lousy Open sores software. Those things are always getting infected.

  2. Obviously ( Score: +5, True ) by Anonymous Coward · · Score: 1

    Russia did it !

    Yours In The Pentagon,
    K. Trout

    1. Re: Obviously ( Score: +5, True ) by Anonymous Coward · · Score: 0

      Looking for the needle (ES)
      in the haystacks (.ru websites)
      and there is no needle there.

  3. big woop by BringsApples · · Score: 2

    The hackers were able to obtain usernames, email addresses, scrambled passwords, and birthdays.

    So they have usernames (made up), email addresses (like I have on my business card), scrambled passwords (not even sure if this matters), and birthdays (not really something that many keep private anyway). I wouldn't care if any of this were taken from me, even if it were my gmail account.

    --
    Politics; n. : A religion whereby man is god.
    1. Re:big woop by The-Ixian · · Score: 2

      It depends on how the passwords were "scrambled"

      Even if they were just hashes, those hashes could be used to correlate against a number of existing password databases from previous leaks (if the hashing algrothims are known or can be guessed). That could then give you better data on who is using the same password elsewhere.

      Also, a birthday is not a trivial piece of information. It is used as a security question all too often. It also give the attacker more clues about you which is never good.

      --
      My eyes reflect the stars and a smile lights up my face.
    2. Re: big woop by Anonymous Coward · · Score: 0

      Salt.

    3. Re:big woop by BringsApples · · Score: 1

      You have a good point, and honestly I have no idea to what degree the email service integrates with other sites. Maybe it's a bigger deal than I first thought.

      I guess I just feel like everyone should be using some local email client, and saving all email locally, rather than on the provider's server(s). Of course there are very good arguments against that. However, Hillary Clinton comes to mind.

      --
      Politics; n. : A religion whereby man is god.
    4. Re:big woop by Anonymous Coward · · Score: 0

      Local clients don't help. You still have to use someone's MTA. Anything you send or receive can be stored by various parties, your ISP, your mail provider, even your client may be compromised. Whoever you communicate with will have copies of your communications, and many services don't delete when deleted. It's either flagged as deleted to hide it, archived in a history log and backups. The days of Mail/ and clearing out /spool and long gone :(

  4. Re:Obviously ( Score: +5, True ) by Anonymous Coward · · Score: 1

    DNC nerd goons looking for retribution ...

  5. Re:Obviously ( Score: +5, True ) by Kernel+Krumpit · · Score: 1

    is that you Kilgore?

    --
    May the lies we live by make us strong, healthy, happy and wise - Kurt Vonnegut.
  6. More proof tRump is a Putin puppet by Anonymous Coward · · Score: 0

    By doing this, they admit they're doing this.

  7. I bet... by sciengin · · Score: 4, Funny

    I bet it was again those evil russian hack-
    Oh wait...

  8. Eeh by fubarrr · · Score: 1

    In Soviet Russia ... you

  9. 23 million spammers by lurker412 · · Score: 1

    The vast majority of the accounts probably were fake accounts used by spammers. Oh, well...

    1. Re:23 million spammers by Anonymous Coward · · Score: 0

      sorry to disappoint, but forums != email service

    2. Re:23 million spammers by laffer1 · · Score: 1

      You haven't used a forum lately have you? Most are full of spam

      --
      MidnightBSD: The BSD for Everyone
  10. Someone hacked the Russians? by russotto · · Score: 2

    Maybe it was the DNC thinking payback was fair play?

  11. confused by Anonymous Coward · · Score: 0

    I am little bit confused about the subject matter

    Mukter
    owner of http://pickbestfishoil.com/

  12. Recommended reading A method to detect and prevent by Anonymous Coward · · Score: 0

    A method to detect and prevent SQL injection attack
    SQL injection refers to an injection attack wherein an attacker can execute malicious SQL statements that control a web application’s database server. Since an SQL injection vulnerability could possibly affect any website or web application that makes use of an SQL-based database. SQL injection can provide an attacker with unauthorized access to sensitive data including, customer data, personally identifiable information, trade secrets, intellectual property and other sensitive information.

    http://amzn.to/2bOarSo

  13. Wow, parapa.mail.ru was compromised? by Anonymous Coward · · Score: 0

    Be aware that emails from the following parapa addresses may be malicious:

    sunnyfunny@mail.ru
    katykat@mail.ru
    joechin@mail.ru

  14. Re:Obviously ( Score: +5, True ) by unixisc · · Score: 1

    Probably one who wants to date Debbie Wasserman Schultz

  15. vBulletin by Sumus+Semper+Una · · Score: 1

    Seriously, do we need an icon for vBulletin now? That's 4 stories in less than 2 weeks about major forums having their information leaked via known vBulletin exploits. It sounds like some people (maybe the same ones each time, maybe not) are just going around to all the major forums that run vBulletin and seeing if they're running an older version with the known vulnerability. Surprise, surprise - most forums haven't bothered to upgrade their vBulletin software. If we're going to keep seeing this story every time there's another vBulletin security exploit, we may as well have a specific tag for it, because I'm guessing it's going to go on for a while longer.

  16. Re:Recommended reading A method to detect and prev by Anonymous Coward · · Score: 0

    See also, little Bobby Tables.

  17. headline should be.... by muphin · · Score: 1

    "over 25 million spammer accounts stolen" the amount of spam i get from mail.ru .. i think 90% of the emails they have are created by bots to spam.

    --
    It's not a typo if you understood the meaning!