Collection 1 Data Breach Exposes More Than 772 Million Email Addresses (zdnet.com)

← Back to Stories (view on slashdot.org)

Collection 1 Data Breach Exposes More Than 772 Million Email Addresses (zdnet.com)

Posted by BeauHD on Wednesday January 16, 2019 @07:00PM from the another-day-another-breach dept.

A collection of almost 773 million unique email addresses and just under 22 million unique passwords were exposed on cloud service MEGA. Security researcher Troy Hunt said the collection of data, dubbed Collection #1, totaled over 12,000 separate files and more than 87GB of data. ZDNet reports: "What I can say is that my own personal data is in there and it's accurate; right email address and a password I used many years ago," Hunt wrote. "In short, if you're in this breach, one or more passwords you've previously used are floating around for others to see." Some passwords, including his own, have been "dehashed", that is converted back to plain text. Hunt said he gained the information after multiple people reached out to him with concerns over the data on MEGA, with the Collection #1 dump also being discussed on a hacking forum. "The post on the forum referenced 'a collection of 2000+ dehashed databases and Combos stored by topic' and provided a directory listing of 2,890 of the files," Hunt wrote. The collection has since been removed. You can visit Hunt's Have I Been Pwned service to see if you are affected by this breach.

68 comments

Min score:

Reason:

Sort:

/Oblg. Honey pot by UnknownSoldier · 2019-01-16 19:07 · Score: 4, Funny

/sarcasm Like I'm going to fall for "Have I Been Pwned" -- that's just a honeypot ! =P
1. Re:/Oblg. Honey pot by thermopile · 2019-01-16 19:54 · Score: 4, Informative
  
  Here's Troy's write-up of the incident, which is better than the ZD net account:
  https://www.troyhunt.com/the-773-million-record-collection-1-data-reach/
  
  --
  "Diplomacy is something you do until you find a rock." --Richard Pound
2. Re:/Oblg. Honey pot by AmiMoJo · 2019-01-16 20:55 · Score: 1
  
  I understand why he doesn't offer links, but I'd much prefer to have a local copy of this to work with. Aside from anything else I've got some old archives I can't remember the password for, do a dictionary would be helpful.
  
  --
  const int one = 65536; (Silvermoon, Texture.cs)
  SJW, n: "Someone I don't like, and by the way I'm a fuckwit" - AC
3. Re:/Oblg. Honey pot by Anonymous Coward · 2019-01-16 21:27 · Score: 1
  
  Actually he does have links for downloadable copies of the database. Go to the "Passwords" tab and scroll down to the bottom. But all the data is encoded SHA-1 or NTLM. It's not a clear text database. So I doubt having a local copy would be useful for a dictionary search.
4. Re:/Oblg. Honey pot by davmoo · 2019-01-16 21:33 · Score: 2
  
  Crap. Didn't realize I wasn't logged in until I hit 'submit'. So let's try this again so that it might actually show up instead of being a hidden 'anonymous coward'.
  Actually he does have links for downloadable copies of the database. Go to the "Passwords" tab and scroll down to the bottom. But all the data is encoded SHA-1 or NTLM. It's not a clear text database. So I doubt having a local copy would be useful for a dictionary search.
  
  --
  I want a new quote. One that won't spill. One that don't cost too much. Or come in a pill.
5. Re: /Oblg. Honey pot by Anonymous Coward · 2019-01-16 21:39 · Score: 0
  
  Why are we whispering?
6. Re:/Oblg. Honey pot by AmiMoJo · 2019-01-16 22:53 · Score: 1
  
  Interesting that he provides NTLM hashes. Every possible 8 character or less NTLM password can be cracked in under 6 hours, or a few seconds if you have rainbow tables.
  He cites the inclusion of personal info as the reason for not releasing the unhashed list. Shame it can't be cleaned up somehow.
  When you start to look around he amount of PI leakage is incredible. Search torrent sites for *.url or *.lnk or thumbs.db files, for example, and you find thousands. The often contain the user's username, which 9 times out of 10 is firstname.lastname.
  
  --
  const int one = 65536; (Silvermoon, Texture.cs)
  SJW, n: "Someone I don't like, and by the way I'm a fuckwit" - AC
7. Re:/Oblg. Honey pot by UnknownSoldier · 2019-01-17 03:54 · Score: 1
  
  > Go to the "Passwords" tab and scroll down to the bottom.
  Thanks for the info!
  Here is the link in question that has the .torrent / .7z file: https://haveibeenpwned.com/Passwords
8. Re:/Oblg. Honey pot by Anonymous Coward · 2019-01-17 06:01 · Score: 0
  
  You can easily generate sha-1 or NTLM hashes to compare against that database. I've checked and I know that only 2 of my really old accounts have matching hashes from an old yahoo leak, but I use them to for fake account sign ins, so no identifying information. I had changed those passwords right after the leak, so I don't have any current passwords in that database. I also don't put identifying information in accounts I create. They're frequently empty of data, or if forced to enter something, it's fake data.
  Everyone should have at least 3 emails. If you're not working, you should have at least 2 emails.
  1 work account that's only used for work.
  1 personal to deal with friends and family.
  1 made up one, not matching your name, for banking.
  I use more than 3 and keep track. The ones for banking are never given out to anyone else, so I know if they ever spam me or get leaked. This way, phishing scams for finance/banking are easily detected in my work and personal accounts, so I can just delete them. I don't get any spam in my banking accounts.
Thats nice by Anonymous Coward · 2019-01-16 19:09 · Score: 0

What was the source of the breach though
1. Re:Thats nice by Anonymous Coward · 2019-01-16 19:45 · Score: 0
  
  more than 2,000 databases and 2,890 files.. says it's an archive of MANY, MANY breaches.
2. Re:Thats nice by ledow · 2019-01-18 02:11 · Score: 1
  
  https://pastebin.com/UsxU4gXA
  was a link I took from an article linked to below.
  Mostly mom'n'pop shops and random Korean/Russian websites.
I always mention to people that by oldgraybeard · 2019-01-16 19:17 · Score: 1

everything in the cloud "cloud service MEGA" in this case, that you did not personally securely encrypt before hand. Is just your raw data in someone else's hands. And the security of that information is just based on your trust of them.
Now if your good with that OK, Great, you are aware of the risks and have made a judgement on them.
But if not you need to rethink using the cloud for that use in the first place.

Just my 2 cents ;)
1. Re: I always mention to people that by johnsnails · 2019-01-16 19:28 · Score: 1
  
  gpg2 --symmetric someArchive.safe Upload this file someArchive.safe to Google drive etc. gpg2 --decrypt someArchive
2. Re: I always mention to people that by Anonymous Coward · 2019-01-16 19:36 · Score: 0
  
  Good job not understanding that this was an upload of a different breach, but by all means, idiot, keep pontificating
3. Re: I always mention to people that by Anonymous Coward · 2019-01-16 20:03 · Score: 0
  
  Maybe you have a faster computer than me, but that process takes ages when you are trying to backup hundreds of GBs of data.
I've been pwned by Anonymous Coward · 2019-01-16 19:59 · Score: 0

Oh no, the linked website says my email address billg(at)microsft.com has been pwned on 46 sites.
They have a great API by piojo · 2019-01-16 20:01 · Score: 5, Informative

I love their API. You can do a search without submitting any sensitive information. Not even a full sha1sum. You send a partial sha1sum, and they send back possible matches. Locally, you see if any are exact matches.

Here is a bash/zsh function which looks up a password (obviously without printing it to console or sending it anywhere):

function haveibeenpwned() { echo "Enter password to check:" stty -echo read line stty echo echo local sha1="$(echo -n "$line" | sha1sum - | cut -f1 -d' ')" echo sha1 is "$sha1" local prefix="$(echo "$sha1" | sed 's/$.....$$.*$/\1/')" local suffix="$(echo "$sha1" | sed 's/$.....$$.*$/\2/')" echo "Searching for prefix: $prefix and suffix: $suffix" echo curl "https://api.pwnedpasswords.com/range/$prefix" 2>/dev/null | grep -i "$suffix" }

--
A cat can't teach a dog to bark.
1. Re:They have a great API by gweihir · 2019-01-16 21:25 · Score: 1
  
  Nice. Some people still have it and know how to do these things.
  
  --
  Most ACs are not even worth the keystrokes to insult them. Be generically insulted by this and ignored otherwise.
2. Re:They have a great API by Anonymous Coward · 2019-01-17 10:37 · Score: 0
  
  Thanks!
  No need for a regex, by the way:
  local output="$(printf %s "$line" | sha1sum)" hash="${output% *}" prefix="${hash:0:5}" suffix="${hash:5:35}"
I'm probably in there by steveha · 2019-01-16 20:36 · Score: 5, Interesting

Starting a couple of months ago, I've received a huge number of extortion emails. At this point it's extortion spam.
All the emails follow the same pattern, and all including somewhere (usually in the To: line, for some reason) an old "burner" password I used on web sites where I don't care if the password leaks.
Here's a rough paraphrase:

Hi, I'm an elite international hacker, and I've hacked your email. You can tell I'm for real because I used your own email account to send this to you.
Go ahead and change your password, but it's too late to protect you from me. I installed a secret program on your computer and it has been logging everything you do, including collecting images from your computer's webcam. I have collected a list of all the porn sites you visit and made a video showing what you were doing while you visited them. You have interesting tastes in porn, don't you!
When you opened this email a timer was automatically started, and you have 48 hours to pay me money or else my automatic program will send all the dirt I have on you to all your friends I harvested from your email address book.
You can use $CRYPTOCURRENCY to send me the money. Send $AMOUNT to $ID_NUMBER. [$AMOUT is usually $700 or $800 or so.] If you don't know how to use cryptocurrency, just Google it, it's easy.
Be more careful in the future so this doesn't happen again to you.
I have received dozens of copies of this email, with the text slightly different. Some of them end with "Don't hate me, everyone needs to do their own job." Some of them call the mysterious malware "RAT software". A couple of times the email was translated into Japanese. (I can read just a little bit of Japanese and was able to recognize it, and I showed it to a fluent friend who confirmed that it fit the above pattern.)
<sarcasm>I must say, my computer is running pretty well considering how many elite international hackers have been messing with it and installing RAT software and such.</sarcasm>
As it happens, I got one copy of the email at least a week before the deluge started. I realized it would have been very scary for someone who uses the same password everywhere and doesn't know how easy it is to forge the "From:" header. Doubly scary if that person actually visits porn sites.

--
lf(1): it's like ls(1) but sorts filenames by extension, tersely
1. Re:I'm probably in there by gweihir · 2019-01-16 21:24 · Score: 1
  
  Yeah, I got about 20 of these too. The quality kept deteriorating though, the first ones at least had a password that had not been in use for several years. The later ones sometimes came with an empty password I had supposedly been using and "improved" text with more grammar mistakes.
  I think it is time the companies that did not secure this data properly are held to account. Say $500 compensation to each customer affected. And maybe the CEO and CISO behind bars for a year or so in punishment unless they can prove they did everything that can be reasonably expected to secure the data.
  
  --
  Most ACs are not even worth the keystrokes to insult them. Be generically insulted by this and ignored otherwise.
2. Re:I'm probably in there by tlhIngan · 2019-01-16 21:48 · Score: 1
  
  Yeah, I got a bunch of these in the span of week. First time I was curious, but I decided to wait. Of course, two days later, I got another one. Two days after that, two more.
  It had a very old password in it, not even sure when I last used it. It was also a really old email address, something I haven't used in nearly two decades now, at least for logins and passwords.
3. Re:I'm probably in there by Anonymous Coward · 2019-01-16 21:52 · Score: 0
  
  https://www.bitcoinabuse.com/reports/create
  Report them with the amount. The amount seems to vary and I'm not sure if this is how they track people who report them.
4. Re:I'm probably in there by Anonymous Coward · 2019-01-16 22:15 · Score: 0
  
  Damn, I'm so jelly of you. I get nuttin' in my email; how do I get on these mailing lists?
  My life is so boring ...
  CAP === 'stagers'
5. Re:I'm probably in there by AmiMoJo · 2019-01-16 22:16 · Score: 1
  
  I've been getting them with a very old password included in the email as "proof" that they got in. For people who re-use passwords a lot it must be quite convincing.
  A friend asked about them, and I pointed out that he didn't have a webcam and that if they had hacked it they would have included an actual photo as proof.
  
  --
  const int one = 65536; (Silvermoon, Texture.cs)
  SJW, n: "Someone I don't like, and by the way I'm a fuckwit" - AC
6. Re: I'm probably in there by illiac_1962 · 2019-01-17 00:25 · Score: 0
  
  My God. You guys need to get on a modern data snooping spam filtering email system. Fucking troglogytes.
7. Re: I'm probably in there by illiac_1962 · 2019-01-17 00:26 · Score: 0
  
  Laughing my ass off thinking about all the normies who get this and panic.
8. Re:I'm probably in there by thegarbz · 2019-01-17 00:33 · Score: 2
  
  Yeah well that's because of all the porn you surf. It says so right in the email. :-P
9. Re:I'm probably in there by Anonymous Coward · 2019-01-17 01:44 · Score: 0
  
  triply scary if they used their email and password pair to register on the porn site.
10. Re:I'm probably in there by rworne · 2019-01-17 01:45 · Score: 1
  
  Actually they say they will provide proof by sending "evidence" to a random number of contacts:
  "Should you are looking at going to the cop, okay, this e-mail cannot be traced back to me. I have dealt with my actions. i am also not attempting to charge a fee so much, i would like to be paid for. mail if i don't get the bitcoin, i will send out your video recording to all of your contacts including close relatives, coworkers, and many others. However, if i do get paid, i'll destroy the recording immediately. If you want evidence, reply Yup & i will certainly send out your video recording to your 9 contacts. it is a nonnegotiable offer, therefore don't waste my time and yours by replying to this e mail."
  Actually, I did manage to trace them down somewhat: Settat Morocco. 105.145.42.45. Probably some dingy internet cafe...
  
  --
  I tried every decent and legal way I could think of to resolve the issue w/the business before I rented the chicken suit
11. Re:I'm probably in there by AmiMoJo · 2019-01-17 02:05 · Score: 4, Funny
  
  I'm tempted to email one back asking them to send the videos out, because I saw this great porn video but can't find it now and maybe they captured it. Plus I want to change my avatar to my orgasm face but am having trouble triggering my camera at the right moment, and my mum won't help.
  
  --
  const int one = 65536; (Silvermoon, Texture.cs)
  SJW, n: "Someone I don't like, and by the way I'm a fuckwit" - AC
12. Re: I'm probably in there by Anonymous Coward · 2019-01-17 02:23 · Score: 0
  
  Who said they aren't? I mean admittedly I only skimmed their posts so maybe they said it, but if not perhaps they simply periodically check their spam folder for false-positives? It's the only place I see such emails at least.
13. Re: I'm probably in there by gweihir · 2019-01-17 08:32 · Score: 1
  
  Ah, yes. I am a "troglogyte" with my own PostFix installation, custom Spamassasin configuration and RBL. And I prefer to see some stuff and will not add a custom rule for it.
  You are a fucking idiot.
  
  --
  Most ACs are not even worth the keystrokes to insult them. Be generically insulted by this and ignored otherwise.
This cannot go on by gweihir · 2019-01-16 21:18 · Score: 1

The companies not securing this data properly must be held to account, and it _must_ hurt. Something like a general $500 compensation to anybody affected (without the need to prove any damage) would do the trick. Sending those responsible to prison for a year or so would do it as well.
As it is at the moment, they just continue their shoddy practices,because nothing happens to them and not securing this data properly is far, far cheaper.

--
Most ACs are not even worth the keystrokes to insult them. Be generically insulted by this and ignored otherwise.
1. Re:This cannot go on by thegarbz · 2019-01-17 00:36 · Score: 1
  
  As it is at the moment, they just continue their shoddy practices
  A website that makes a lot of money distributing porn and copyrighted content does shoddy practices? Say it aint so!
My special email only used on /. pwned by Anonymous Coward · 2019-01-16 21:25 · Score: 1

This email was used on only one site, Slashdot.org
It is pwned.
Suggestion: Please change the password of the emails you use on /.
1. Re:My special email only used on /. pwned by Anonymous Coward · 2019-01-16 22:00 · Score: 0
  
  (yeah right. sure.)
Criminal Liability? by dwillden · 2019-01-16 21:32 · Score: 1

When are we going to get criminal liability for these companies that do not secure their data. Every week it's another breach, with another release of incredible numbers of peoples account or personal information. Enough is enough. Any company that does not secure it's user data should be criminally liable for this failure

That and maybe they shouldn't be keeping nearly as much data. But then they can't data-mine it and sell it.

--
I'm too lazy to compose a creative sig.
1. Re:Criminal Liability? by Tomahawk · 2019-01-16 22:02 · Score: 1
  
  There's also a lot you can do also. The onus cannot fall only on the companies. They can still have everything done perfectly correctly and have all of the latest patches and have followed all of the security advise they can get their hands on, and still get breached due to some other zero-day that was exploited. There will always be holes, no matter how careful they are.
  So do what you can yourself to ensure that if a company is breached, and try to ensure your data isn't of much use. Some data will be (if they get your CC details, or your Social Security number, etc), but, for example, by using a different password for each and every site, and having MFA setup, etc, you can at lease ensure that when the inevitable happens that hackers can't use that data to login to another site and steal more data about you.
2. Re:Criminal Liability? by dwillden · 2019-01-17 00:51 · Score: 2
  
  I already do all that. But none of that addresses the issue that most of these breaches are not due to some exotic zero-day exploit but from company after company not bothering to properly secure their data storage against the simplest of hacks and phishing attempts. Phish the right secretary who shouldn't have the access to those accounts and yet somehow she does and we have a breach.
  
  Yes there will always be some vulnerabilities. But how often do you hear of Banks having their financial systems hacked? Not very often. And it's because they are liable for the money they are entrusted with. Security is possible, and not that difficult. But too many companies that are so eager to hoover in and aggregate all our data barely bother with security.
  
  It's time to make allowing these breaches criminal. In court if they can prove it was a true zero-day exploit then they can be excused. But if it's determined to be a common and easily blocked attack then they deserve the liability, and any fines that come with it.
  
  --
  I'm too lazy to compose a creative sig.
Can I see my data? by Tomahawk · 2019-01-16 21:56 · Score: 1

So I searched a couple of addresses and they are listed. Or, at least, the site tells me there are listed.
What would be good, now, is if I could actually view the information about myself. Email it me, maybe? Like, I just gave you my email address...
Just how old is the password? And for what site(s)? that information doesn't appear to be particularly forthcoming...
1. Re:Can I see my data? by shanen · 2019-01-16 22:17 · Score: 1
  
  Apparently not without giving it away, which is crazy. Per my earlier comment, there is no reason to implement it that way unless the real objective is to get more email addresses. I included an alternative algorithm in that comment.
  
  --
  Freedom = (Meaningful - Coerced) Choice != (Speech | Beer^2), and sad sock puppets' bad mods avail them naught.
Re:Disgraceful by Anonymous Coward · 2019-01-16 22:03 · Score: 0

You're clearly a "modern Internet user" yourself – so, as my old mum used to say, "don't take names to yourself".
(Also, why the obsession with bundles of sticks?)
How to make the search safe by shanen · 2019-01-16 22:14 · Score: 2

Exactly my reaction. The "checking" system should NOT ask for your email address. For example, it could ask for substrings, perhaps four letters at a time, and tell you how many possibilities there are. If there are too many to scan to see if you've been included, then you could enter another four characters and refine the search. At no point should you need to give away the email address you're trying to check.

--
Freedom = (Meaningful - Coerced) Choice != (Speech | Beer^2), and sad sock puppets' bad mods avail them naught.
1. Re:How to make the search safe by shanen · 2019-01-17 14:53 · Score: 1
  
  Thought of a second algorithm for a safe search. I think the first algorithm is pretty good and fairly easy to understand, but maybe it has a vulnerability. The new algorithm would require an external resource with high trust. From that resource you would download a secure checksum calculator. Not sure how you could really protect it if your computer has been pwned, but you have more serious problems in that case anyway, but assuming you can run the checksum calculator locally and securely, then you would feed your email address to it and give that result to the website that checks for your email address.
  Actually, that doesn't even need to be a particularly good checksum. It would suffice if the final check returns a number of email addresses that might or might not include your email address. The only problem is when there are too many candidates, and the checksum only needs to be good enough to prevent that.
  
  --
  Freedom = (Meaningful - Coerced) Choice != (Speech | Beer^2), and sad sock puppets' bad mods avail them naught.
Using BASH RegEx by DrYak · 2019-01-16 22:33 · Score: 4, Informative

local prefix="$(echo "$sha1" | sed 's/$.....$$.*$/\1/')"
local suffix="$(echo "$sha1" | sed 's/$.....$$.*$/\2/')"

For recent Bash versions that have built-in RegEx :
[[ "${sha1}" =~ ^(.....)(.*)$ ]] local prefix="${BASH_REMATCH[1]}" local suffix="${BASH_REMATCH[2]}"

--
"Sufficiently advanced satire is indistinguishable from reality." - [Tips: 1DrYakQDKCQ6y52z6QbnkxHXAocMZJE61o ]
1. Re:Using BASH RegEx by thegarbz · 2019-01-17 00:33 · Score: 1
  
  Every time I see a string of slashes brackets, dots, and numbers all proceeded with s/ I can't help but think: https://xkcd.com/208/
2. Re:Using BASH RegEx by piojo · 2019-01-17 04:23 · Score: 1
  
  local prefix="$(echo "$sha1" | sed 's/$.....$$.*$/\1/')"
  local suffix="$(echo "$sha1" | sed 's/$.....$$.*$/\2/')"
  For recent Bash versions that have built-in RegEx :
  [[ "${sha1}" =~ ^(.....)(.*)$ ]] local prefix="${BASH_REMATCH[1]}" local suffix="${BASH_REMATCH[2]}"
  Nice! But if you use that, it's actually a bear to keep compatibility with zsh. You need to add this to the beginning of the function:
  [[ ! -z $ZSH_VERSION ]] && setopt local_options ksh_arrays bash_rematch
  
  --
  A cat can't teach a dog to bark.
everybody is acting all surprised.... by WolfgangVL · 2019-01-16 22:39 · Score: 4, Interesting

Just stop sharing your damn creds. If you can't do that, then stop sharing THE damn creds.
"Jail the execs!"
"Hold them accountable!"
"Fine them!"
"We need new laws!"
None of that shit is going to happen. If you keep making accounts for every little thing, pretty soon I'm gonna need to create a throwaway account to pump fkg gas. Just stop.
Checkout as guest. No thanks. I do NOT agree.
Do you really NEED an account for everydumbthing.com?
Creds have value, otherwise, you would not be asked to give them away every other keystroke. Treat them as such.
Sometimes, the only way to win is not to play.

--
You are being ripped off every second of every day, so that advertisers can help rip you off even more tomorrow.
1. Re:everybody is acting all surprised.... by Anonymous Coward · 2019-01-17 01:02 · Score: 0
  
  Thankfully, some sites don't require login for silly things like... posting comments, for instance.
2. Re:everybody is acting all surprised.... by cordovaCon83 · 2019-01-17 02:43 · Score: 1
  
  Easy for you to say when you're not logged in!
3. Re:everybody is acting all surprised.... by Anonymous Coward · 2019-01-17 02:59 · Score: 0
  
  Says the user posting with a credentialed account....
4. Re:everybody is acting all surprised.... by Anonymous Coward · 2019-01-17 11:20 · Score: 0
  
  Two liquor stores where I was a regular lost my business about a year ago over this.
  The first one already had a "frequent buyer program" on which I was getting the maximum discount possible giving them just my name (although I should have used an alias). They switched to a 3rd party "frequent buyer program" which required an e-mail address and tracks people at all sorts of stores and I completely lost my discount after spending thousands of dollars over the years.
  Fuck them.
  The 2nd one implemented a similar 3rd party tracker despite never having anything like that before. I haven't been back to either one since.
  I've since found a store with prices about 15% lower without all the bullshit of tracking me.
Waiting for our resident security expert's thought by Anonymous Coward · 2019-01-16 23:53 · Score: 0

I'm waiting for our self proclaimed security expert, Android Package, to weigh in on the use of hosts and how if only it had been used by those who were breached this could have all been avoided.
Wasn't Mega Kimmie's baby? by Opportunist · 2019-01-17 00:49 · Score: 1

Ya know, Kimmie-boy Schmitz, lardball extraordinaire and mostly beloved for being something the copyright mafia can sink a lot of resources in so they can't prosecute someone innocent at least for the time being?
Well, he is German originally, and "cloud" is a homophone of the German "klaut", which means "he steals".
Draw your own conclusions.

--
We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
1. Re:Wasn't Mega Kimmie's baby? by fb · 2019-01-17 03:18 · Score: 1
  
  He was ousted by the company several years ago and has been very critical of them ever since.
  
  --
  fB
2. Re:Wasn't Mega Kimmie's baby? by Anonymous Coward · 2019-01-17 10:41 · Score: 0
  
  saddly it seems he was right...
  f..ing bastards. they should need to be held responsible. 1 day in jail for every leaked password!
3. Re:Wasn't Mega Kimmie's baby? by Anonymous Coward · 2019-01-18 00:18 · Score: 0
  
  I made the same mistake as you did reading the summary.
  The leak was hosted on mega.co.nz. It was not of mega.co.nz.
Yeah Hildabeast by Anonymous Coward · 2019-01-17 00:49 · Score: 0

Here are your meds. All is OK.
Re:Disgraceful by fb · 2019-01-17 03:15 · Score: 1

We still check in from time to time, though.

--
fB
Ransom spam/scam using leaked credentials by kbahey · 2019-01-17 03:53 · Score: 1

For the past couple of months, I also received a lot of these variants.
All of them have a Bitcoin address that you should pay a ransom to.
All of them claim that they hacked my "internet" and viewed me on webcams (which I don't use).
All of them claim that they have compromising videos of me watching porn.
Most of them have my leaked email address in the From: header.
Many of them have a password that I used or part of it (and use that as proof they hacked "my account").
Many of them claim the hack is on my router and reference a CVE for Cisco (I don't own any Cisco equipment)
BBC reporters were targeted, and they did a piece on this scam. Worth watching ...

--
2bits.com, Inc: Drupal, WordPress, and LAMP performance tuning.
Collection #1 Data Breach Databases still online by Anonymous Coward · 2019-01-20 05:24 · Score: 0

Scary, how many information were breach. My email was found in three instances of data breach. Reading though another forum, found that someone using the acronym datasiph0n is publishing the data breach databases online https://shoppy.gg/product/jWCDeeJ
Re:Collection #1 Data Breach Databases still onlin by acceleriter · 2019-01-31 07:38 · Score: 1

This pigfucker is charging for the database. Fuck him sideways with a rusty spork.

--
CEE5210S The signal SIGHUP was received.