A Hacker Has Dumped Nearly One Billion User Records Over the Past Two Months (zdnet.com)

← Back to Stories (view on slashdot.org)

A Hacker Has Dumped Nearly One Billion User Records Over the Past Two Months (zdnet.com)

Posted by msmash on Monday April 15, 2019 @07:20AM from the security-woes dept.

A hacker who spoke with ZDNet in February about wanting to put up for sale the data of over one billion users is getting dangerously close to his goal after releasing another 65.5 million records last week and reaching a grand total of 932 million records overall. From a report: The hacker's name is Gnosticplayers, and he's responsible for the hacks of 44 companies, including last week's revelations. Since mid-February, the hacker has been putting batches of hacked data on Dream Market, a dark web marketplace for selling illegal products, such as guns, drugs, and hacking tools. He's released data from companies like 500px, UnderArmor, ShareThis, GfyCat, and MyHeritage, just to name the bigger names. Releases have been grouped in four rounds -- Round 1 (620 million user records), Round 2 (127 million user records), Round 3 (93 million user records), and Round 4 (26.5 million user records).

7 of 72 comments (clear)

Min score:

Reason:

Sort:

Re:So? by Anonymous Coward · 2019-04-15 07:33 · Score: 5, Funny

My pass phrase is 1kb long.
That is a insecure pass phrase. "1Kb L0nG$" would be better.
Re:So? by JaredOfEuropa · 2019-04-15 07:47 · Score: 5, Funny

My pass phrase is 1kb long. Good fucking luck with that
Worst pickup line ever...

--
If construction was anything like programming, an incorrectly fitted lock would bring down the entire building...
Re:So? by Locke2005 · 2019-04-15 07:47 · Score: 5, Funny

"Do you think maybe he's compensating for something?" -- Shrek

--
I've abandoned my search for truth; now I'm just looking for some useful delusions.
In other news... by BringsApples · 2019-04-15 07:56 · Score: 2

...People all over the world are continuously giving their data away to FaceBook for free.

--
Politics; n. : A religion whereby man is god.
Re:So? by Nidi62 · 2019-04-15 07:57 · Score: 2

My pass phrase is 1kb long.
That is a insecure pass phrase. "1Kb L0nG$" would be better.
Dammit! Now I have to change the combination on my luggage!

--
The only thing necessary for evil to triumph is for it to be pitted against a slightly greater evil
Sure sure by jbmartin6 · 2019-04-15 08:35 · Score: 2

This appears to be the same person behind the "Collection #1" releases circa Jan 18th. it was just a collection of a bunch of older dumps i.e. data aggregated from other breaches. I didn't see any reason to think this person was behind all of the hacks, I got the sense he might also brag he could hack into any porn site on the Internet by putting in his mom's credit card number.

--
This posting is provided 'AS IS' without warranty of any kind, implied or otherwise.
Advice by Required+Snark · 2019-04-15 08:47 · Score: 2, Interesting

Never sign up for anything ever.
Really. Don't do online payments, don't subscribe to news organizations, don't stream games, don't get email notifications, nothing. The only sort of safe exception is medical information under HIPPA.
Remember no organization is at risk if they leak your info. The cost of a breach is just factored into the cost of doing business. That's why HIPPA is an exception. Medical information leaks are treated extremely seriously and they can even cause an organization to be shut down.
The only one who is at risk if personal data becomes public is you. Organizations don't give a damn about you.

--
Why is Snark Required?