Slashdot Mirror
A Hacker Has Dumped Nearly One Billion User Records Over the Past Two Months (zdnet.com)
A hacker who spoke with ZDNet in February about wanting to put up for sale the data of over one billion users is getting dangerously close to his goal after releasing another 65.5 million records last week and reaching a grand total of 932 million records overall. From a report: The hacker's name is Gnosticplayers, and he's responsible for the hacks of 44 companies, including last week's revelations. Since mid-February, the hacker has been putting batches of hacked data on Dream Market, a dark web marketplace for selling illegal products, such as guns, drugs, and hacking tools. He's released data from companies like 500px, UnderArmor, ShareThis, GfyCat, and MyHeritage, just to name the bigger names. Releases have been grouped in four rounds -- Round 1 (620 million user records), Round 2 (127 million user records), Round 3 (93 million user records), and Round 4 (26.5 million user records).
"500px, UnderArmor, ShareThis, GfyCat, and MyHeritage, just to name the bigger names." Other than underarmor, THESE are the BIGGER NAMES? Lol.
My pass phrase is 1kb long. Good fucking luck with that
Two words: tear ifs
Nah; just fine him $1 for each user profile stolen, and keep him in jail until he pays off the entire fine.
I've abandoned my search for truth; now I'm just looking for some useful delusions.
A bit lax, don't you think? Buried neck deep in an army ant hill covered in honey.
...People all over the world are continuously giving their data away to FaceBook for free.
Politics; n. : A religion whereby man is god.
I've had my identity stole so many times
I don't know what I look like!
If sentence would be similar to what corporations get for breaking laws, the guy would get a fine of 1% of this net income and by appeal the sum would be halved.
Until there's a fine of $1,000+ per personal information leaked (no mass discount and possible criminal charges), this will continue. Companies, even the size of Facebook, would face disappearing overnight and prison time. Then, they will seriously consider what data to keep for how long instead of hoarding all and leaking. With this, no need for the likes of GDPR and other legal swiss cheeses.
I really do find relaxing with some left-handed tinydick masturbation to a Marvel sequel really puts me in the right frame of mind to comment vapid consumerism on Slashdot and then mod myself up with dummy accounts. /Kendall
I would be heavily in favour of the death penalty for this moron.
The focus should be on fixing security holes, rather than draconian punishments for those who inevitably exploit them.
Just shows you are a vicious cave-man. The death-"penalty" has no deterrence value and is just revenge. As such it makes matters worse. Great job.
Most ACs are not even worth the keystrokes to insult them. Be generically insulted by this and ignored otherwise.
That would make things better. But some people obviously prefer them to stay bad so they can indulge their sadistic fantasies...
Most ACs are not even worth the keystrokes to insult them. Be generically insulted by this and ignored otherwise.
"wanting to put up for sale the data of over one billion users is getting dangerously close to his goal after releasing another 65.5 million records last week and reaching a grand total of 932 million records overall."
"Dangerously close"? I'm not going to argue that this isn't bad, but does something magical happen when he releases the data for the billionth user and reaches his goal that makes it especially dangerous? Shouldn't releasing records 932,000,001 through 1,000,000,000 be at _most_ about 6.8% as dangerous as all the records he's released already?
This Space Intentionally Left Blank
Terrible news article whoever put this together should be getting a grilling from their supervisor, I can find price but where is the buy now link?
This appears to be the same person behind the "Collection #1" releases circa Jan 18th. it was just a collection of a bunch of older dumps i.e. data aggregated from other breaches. I didn't see any reason to think this person was behind all of the hacks, I got the sense he might also brag he could hack into any porn site on the Internet by putting in his mom's credit card number.
This posting is provided 'AS IS' without warranty of any kind, implied or otherwise.
Care to name anyone who's reoffended after being executed?
The usual lame refrain from losers who silently condone the criminals behaviour but dont have the balls to admit it.
I'm not condoning his actions in the slightest.
But you do realize what he's doing basically, Google and Facebook and many others also do every day?
Really. Don't do online payments, don't subscribe to news organizations, don't stream games, don't get email notifications, nothing. The only sort of safe exception is medical information under HIPPA.
Remember no organization is at risk if they leak your info. The cost of a breach is just factored into the cost of doing business. That's why HIPPA is an exception. Medical information leaks are treated extremely seriously and they can even cause an organization to be shut down.
The only one who is at risk if personal data becomes public is you. Organizations don't give a damn about you.
Why is Snark Required?
He should incorporate.
"500px, UnderArmor, ShareThis, GfyCat, and MyHeritage, just to name the bigger names." Other than underarmor, THESE are the BIGGER NAMES? Lol.
IKR? Never heard of any of these short of UnderArmor and I haven't heard any news from that outfit for a long time.
You're messin' with my Zen Thing, man.....
Anything could be a 'user record'. I have been to all kinds of websites that demand I reveal personal information before I can interact with it. I often feed it a ton of bogus information. I couldn't care less if it gets stolen.
Care to name anyone who's reoffended after being executed?
Exactly the same number as have reoffended after serving a life sentence without eligibility for parole. Killing them back accomplishes nothing, but does exclude the possibility of exoneration in the large number of cases where someone has been wrongly convicted.
False convictions are, indeed, sad, however, if there is proof beyond a shadow of a doubt: multiple independent witnesses, videos, photos, confession. etc. then those cases warranting the death penalty should continue. Rape, murder, incest, selling drugs to minors, paedophilia, ID theft, armed robbery. I could go on. But, no... we pay by dint of taxation for these asshats to enjoy 3 hots and a cot, free TV, a gym, calls home, visitations, conjugal visits in some places, you name it. I think we should take a page from Singapore's book.
It's a HACKER who did done HACKING with his ebil HACKS!
You cannot possibly do anything against that. It's like the tsunami wave of the cyberspaces. HACKER, HACKING, with HACKS! So no, this is obviously force majeure as all security is impossible against HACKERS HACKING WITH HACKS.
The more you know.
You either are obtuse or willfully ignoring the prior post (which is correct). The death penalty is not a deterrent. Take for example murder; there are only three categories: 1) Premeditated: You thought about it and did it knowing about the death penalty and still did it --> not a deterrent. 2) Insanity: You are insane and thus the death penalty didn't register as you are insane --> not a deterrent. 3) Crime of passion: In the heat of the moment you are not thinking of the consequences (eg death penalty) and did it anyway --> not a deterrent.
The pure fact is that death penalty inmates use MORE dollars than life imprisonment. That's also ignoring the fact that as taxpayers and members of this society that in the instance that ONE innocent inmate is executed, we have all collectively committed murder.
Iâ(TM)m not sure about. I bet if the penalty for murder was just 3 months you would see a lot more murder.
If you stop letting people appeal after appeal after appeal it wouldn't cost so much. Criminals like James Holmes where they is zero doubt of who committed the crime. Why keep those people alive? Saying it cost to much is just the system being broken. Killing someone is extremely cheap. Just ask James Holmes.
For some reason though, we would rather waste money on keeping him alive. I guess he's worth our taxes dollars, eh? Surely no other way we could spend that money but instead we let him live.
In extremely cases where there is lots of evidence, there should totally be an option of the death penalty and we really ought to be reforming that system itself. 30 years on death row? That's a miscarriage of justice.
That is unlikely. Most people are not cave-men that think murder (whether by the state or otherwise) is acceptable.
Most ACs are not even worth the keystrokes to insult them. Be generically insulted by this and ignored otherwise.
Wow, you really do not understand how things work. And even with your primitive approach, it would still not have any deterrence value.
Most ACs are not even worth the keystrokes to insult them. Be generically insulted by this and ignored otherwise.
That is not what "deterrence" means.
Most ACs are not even worth the keystrokes to insult them. Be generically insulted by this and ignored otherwise.
You get much more fun junk mail if you claim your income's >$400,000; and your interests include hunting rifles and endangered species.
Care to name anyone who's reoffended after being executed?
You thought you were trolling, but I've got a serious answer to that:
Jesus Christ ("offended" the archaic laws in place in 1BC)
Justice isn't always fair -- it's enforcing the laws in place at the time. One of the failings of our justice system is that the system itself can be wrong at times and yet we still strive for the harshest penalty for someone who may have been right in the truest sense.
Would be good advice except for one small thing. The government leaks too, and one can't avoid being in their databases.
Dream Market got shut down after it was raided by the DEA so what in the fuck are you even talking about?
I would be heavily in favour of the death penalty for this moron.
The focus should be on fixing security holes, rather than draconian punishments for those who inevitably exploit them.
Can't we do both?
What is your theory as to why we can't have nice things?
Cave men like that saved your parents arse in WW2. Perhaps you think Hitler and the Japanese should have just had stern words spoken to them?
Moron.
Who said deterence is the only goal? Prevention of further crimes by the criminal is just as important and the death penalty does that perfectly with the added bonus of not costing the same as a 4 star hotel to keep them incarcerated for their rest of their lives.
Technically speaking, how did hacker ‘gnosticplayers’ actually hack these companies?
And we have all successfully lowered the tax burden.