Bitcoin Forum

Other => Off-topic => Topic started by: rohnearner on August 06, 2014, 08:45:41 AM



Title: Russian hackers steals 1.2 BILLION credentials
Post by: rohnearner on August 06, 2014, 08:45:41 AM
Russian hackers group stole 1.2 billion usernames and passwords and 500 million email addresses
If this is true, Its time to change your Passwords
http://nbcnews.to/1pWDt0Z

https://i.imgur.com/1QqmLDX.png


Title: Re: Russian hackers steals 1.2 BILLION credentials
Post by: iluvbitcoins on August 06, 2014, 09:06:05 AM
Quote
Each time a computer visited a site, it attempted a "SQL injection," in which items like search and comment fields are filled with code meant to force the site's database to spit out its contents

sounds like that private video shit on facebook


Title: Re: Russian hackers steals 1.2 BILLION credentials
Post by: Feneusens on August 06, 2014, 01:40:14 PM
Russian hackers group stole 1.2 billion usernames and passwords and 500 million email addresses
If this is true, Its time to change your Passwords
http://nbcnews.to/1pWDt0Z

https://i.imgur.com/1QqmLDX.png


Thats the main reason not to have same password for everything you own...


Title: Re: Russian hackers steals 1.2 BILLION credentials
Post by: rohnearner on August 06, 2014, 07:22:51 PM
Russian hackers group stole 1.2 billion usernames and passwords and 500 million email addresses
If this is true, Its time to change your Passwords
http://nbcnews.to/1pWDt0Z

https://i.imgur.com/1QqmLDX.png


Thats the main reason not to have same password for everything you own...
Not to have same passwords + keep changing it time to time, only things that becomes an issue in this case is remembering and managing them.. maybe you'll need a register where you'll save all your login credential after changing them saving it on a computer system is never safe.


Title: Re: Russian hackers steals 1.2 BILLION credentials
Post by: Gargulan on August 06, 2014, 07:32:51 PM
Russian hackers group stole 1.2 billion usernames and passwords and 500 million email addresses
If this is true, Its time to change your Passwords
http://nbcnews.to/1pWDt0Z

https://i.imgur.com/1QqmLDX.png


Thats the main reason not to have same password for everything you own...
Not to have same passwords + keep changing it time to time, only things that becomes an issue in this case is remembering and managing them.. maybe you'll need a register where you'll save all your login credential after changing them saving it on a computer system is never safe.

Or put a two factor authentication/sms verification on all important applications.


Title: Re: Russian hackers steals 1.2 BILLION credentials
Post by: rohnearner on August 06, 2014, 07:40:05 PM
Or put a two factor authentication/sms verification on all important applications.
2FA is recommended in every service which provides it but never feel so secure about it even 2FA can't save you when they come for you..! :P


Title: Re: Russian hackers steals 1.2 BILLION credentials
Post by: FUR11 on August 06, 2014, 08:38:53 PM
Russian hackers group stole 1.2 billion usernames and passwords and 500 million email addresses
If this is true, Its time to change your Passwords
http://nbcnews.to/1pWDt0Z

https://i.imgur.com/1QqmLDX.png


And that's why cryptography is awesome. If done right, you can't steal credentials, because they're either not there or not on a system that can be hacked in order to retrieve them. One of the reasons why Bitcoin, if done right, is safer than every bank account - from the technological/mathematical point of view!


Title: Re: Russian hackers steals 1.2 BILLION credentials
Post by: Lethn on August 06, 2014, 09:11:06 PM
Bitcoin user not affected :D can't steal personal information that's not there.... BWHAHAHAHAHAHAHHAAAAA!!!


Title: Re: Russian hackers steals 1.2 BILLION credentials
Post by: Brewins on August 06, 2014, 09:25:39 PM
Russian hackers group stole 1.2 billion usernames and passwords and 500 million email addresses
If this is true, Its time to change your Passwords
http://nbcnews.to/1pWDt0Z

https://i.imgur.com/1QqmLDX.png


Thats the main reason not to have same password for everything you own...

And the main reason why use the same password for 10 years is not a good idea too...


Title: Re: Russian hackers steals 1.2 BILLION credentials
Post by: Benjig on August 06, 2014, 09:40:29 PM
Russian hackers group stole 1.2 billion usernames and passwords and 500 million email addresses
If this is true, Its time to change your Passwords
http://nbcnews.to/1pWDt0Z

https://i.imgur.com/1QqmLDX.png


Such vulnerabilities are well known and fairly easily fixed, but thousands of websites clearly have yet to do so.

that means major sites dint leak passwords..


Title: Re: Russian hackers steals 1.2 BILLION credentials
Post by: FUR11 on August 06, 2014, 09:42:44 PM
Russian hackers group stole 1.2 billion usernames and passwords and 500 million email addresses
If this is true, Its time to change your Passwords
http://nbcnews.to/1pWDt0Z

https://i.imgur.com/1QqmLDX.png


Such vulnerabilities are well known and fairly easily fixed, but thousands of websites clearly have yet to do so.

that means major sites dint leak passwords..

I don't get at all how it is even possible to get the passwords in plain text. I mean, who on earth is storing passwords in plaintext on their servers? This is something you learn in ITsec 101 or cryptography 101...


Title: Re: Russian hackers steals 1.2 BILLION credentials
Post by: Damnyo on August 06, 2014, 10:01:44 PM
Use different pass for each account crew checkin in.


Title: Re: Russian hackers steals 1.2 BILLION credentials
Post by: poisenrang on August 06, 2014, 10:07:06 PM
how can they even do this? i saw it on the tv just a couple hours ago.


Title: Re: Russian hackers steals 1.2 BILLION credentials
Post by: TheJohn on August 07, 2014, 03:41:12 AM
Or put a two factor authentication/sms verification on all important applications.
2FA is recommended in every service which provides it but never feel so secure about it even 2FA can't save you when they come for you..! :P

The problem is, not every website provide 2FA...


Title: Re: Russian hackers steals 1.2 BILLION credentials
Post by: jaberwock on August 07, 2014, 03:44:08 AM
Russian hackers group stole 1.2 billion usernames and passwords and 500 million email addresses
If this is true, Its time to change your Passwords
http://nbcnews.to/1pWDt0Z

https://i.imgur.com/1QqmLDX.png


Such vulnerabilities are well known and fairly easily fixed, but thousands of websites clearly have yet to do so.

that means major sites dint leak passwords..

Sometimes there is a public leak of passwords or private contend in major sites.

Yes, they make mistakes with their security too.


Title: Re: Russian hackers steals 1.2 BILLION credentials
Post by: CoinsCoinsEverywhere on August 07, 2014, 04:53:20 AM
Ok, seriously, why do people do this crap (stealing passwords and other info)?  It just wastes everyone's time.  There are so many better, constructive things that people can do with their lives.


Title: Re: Russian hackers steals 1.2 BILLION credentials
Post by: rohnearner on August 07, 2014, 08:01:30 AM
Ok, seriously, why do people do this crap (stealing passwords and other info)?  It just wastes everyone's time.  There are so many better, constructive things that people can do with their lives.
Some do it for fun, some do it to defame some particular website in this case they targeted 1.2 billion login credentials and some of main stream websites in total 420,000 websites.
 They can make money out of it too.. 500 million email addresses and 1.2billion they can sell it , exploit it in every possible manner, blackmailing... and much more..   


Title: Re: Russian hackers steals 1.2 BILLION credentials
Post by: Gleb Gamow on August 07, 2014, 09:33:00 AM
Ok, seriously, why do people do this crap (stealing passwords and other info)?  It just wastes everyone's time.  There are so many better, constructive things that people can do with their lives.
Some do it for fun, some do it to defame some particular website in this case they targeted 1.2 billion login credentials and some of main stream websites in total 420,000 websites.
 They can make money out of it too.. 500 million email addresses and 1.2billion they can sell it , exploit it in every possible manner, blackmailing... and much more..   

Craigslist ad:

For sale: I million plain text passwords. ONLY 1.2 billion available. We accept Bitcoin.


Title: Re: Russian hackers steals 1.2 BILLION credentials
Post by: amit123 on August 07, 2014, 10:26:12 AM
Craigslist ad:

For sale: I million plain text passwords. ONLY 1.2 billion available. We accept Bitcoin.
Just tell me the price.. and take my btc..!


Title: Re: Russian hackers steals 1.2 BILLION credentials
Post by: some1 on August 07, 2014, 02:39:47 PM
The hackers are going to use them for spam e-mail and not stealing the financial information.
It pays more to have those accounts in use than to reveal the vulnerability.

There is worry among some in the security community that keeping personal information out of the hands of thieves is a losing battle.


Title: Re: Russian hackers steals 1.2 BILLION credentials
Post by: Gargulan on August 07, 2014, 05:41:37 PM
Ok, seriously, why do people do this crap (stealing passwords and other info)?  It just wastes everyone's time.  There are so many better, constructive things that people can do with their lives.

Stealing is easy money. Working hard is not.



Title: Re: Russian hackers steals 1.2 BILLION credentials
Post by: some1 on August 07, 2014, 07:46:19 PM
Ok, seriously, why do people do this crap (stealing passwords and other info)?  It just wastes everyone's time.  There are so many better, constructive things that people can do with their lives.

Money

It's a daytime job.

If I send 100000 spam messages and just a couple of them succed I've earned enough.


Title: Re: Russian hackers steals 1.2 BILLION credentials
Post by: spazzdla on August 07, 2014, 07:56:18 PM
This makes me want to get a real offline wallet..


Title: Re: Russian hackers steals 1.2 BILLION credentials
Post by: rohnearner on August 07, 2014, 08:50:41 PM
This makes me want to get a real offline wallet..
It looks like you are around here for a while now, the second week I was in this forum I realized that and got an offline paper wallet although I'm still keeping some of it online and feel so insecure about it even after having all the necessary securities . Every day there is a new story of hacking, the one I remember in recent times is " Klee's " who lost some 1100btc so if you haven't setup an offline wallet yet go for it ASAP , better choose paper wallet or similar.


Title: Re: Russian hackers steals 1.2 BILLION credentials
Post by: 247crypto on August 07, 2014, 09:07:49 PM
Proofs? Money stealing?
No damaged part?

Anti-Russian image making company.


Title: Re: Russian hackers steals 1.2 BILLION credentials
Post by: Gleb Gamow on August 07, 2014, 09:37:35 PM
Imagine what one could glean from the memory card of one of these babies:

http://smallbusinesssolutions.blogs.xerox.com/files/2011/12/Scanning.jpg

http://www.techrepublic.com/blog/tr-dojo/police-medical-records-found-on-used-copy-machines/?tag=content%3BleftCol


Title: Re: Russian hackers steals 1.2 BILLION credentials
Post by: marryXmas on August 08, 2014, 02:55:11 AM
Imagine what one could glean from the memory card of one of these babies:

http://smallbusinesssolutions.blogs.xerox.com/files/2011/12/Scanning.jpg

http://www.techrepublic.com/blog/tr-dojo/police-medical-records-found-on-used-copy-machines/?tag=content%3BleftCol
Probably not much. It is pretty rare that passwords or other confidential information is actually copied with a copier. Most of this kind of info is usually stored digitally.


Title: Re: Russian hackers steals 1.2 BILLION credentials
Post by: screwUdriver on August 08, 2014, 03:53:16 AM
I think most of these accounts were likely duplicates and probably from websites with really weak security.


Title: Re: Russian hackers steals 1.2 BILLION credentials
Post by: rohnearner on August 08, 2014, 08:40:54 AM
I think most of these accounts were likely duplicates and probably from websites with really weak security.
They hacked data from 420,000 websites and you can't be so sure about the only sites with weak security was targeted any website can have vulnerability like Khalil hacked Mark Zuckerberg's fb wall last year, although stealing login credential will require sneaking into database but no one can say its not possible with big fishes out there.


Title: Re: Russian hackers steals 1.2 BILLION credentials
Post by: Gleb Gamow on August 08, 2014, 05:40:49 PM
Looks like this revelation's been rehashed from Feb. 28, 2014.

http://www.scmagazine.com/files-containing-360-million-credentials-125-billion-email-addresses-located-on-deep-web/article/336211/

http://s18.postimg.org/www56m0l5/Alex_Holden_Holdings_Feb_28_2014.jpg




http://s7.postimg.org/eyxgbibiz/Mt_Gox_Feb_28.jpg

Would it surprise you to learn that the following three are all bitcoiners?: Alex Holden; Brian Krebs; Adam Greenberg.

https://twitter.com/writingadam

http://s16.postimg.org/4bhry3wc5/Adam_Greenberg_on_Twitter.jpg

https://twitter.com/writingadam/status/443501118782709761

http://s28.postimg.org/mg7hc2fy5/Adam_Greenberg_on_Mt_Gox.jpg


Title: Re: Russian hackers steals 1.2 BILLION credentials
Post by: southern on August 08, 2014, 06:07:59 PM
Quote
Each time a computer visited a site, it attempted a "SQL injection," in which items like search and comment fields are filled with code meant to force the site's database to spit out its contents

sounds like that private video shit on facebook

SQL injection still works after all this time, sloppy sloppy programmers  :D


Title: Re: Russian hackers steals 1.2 BILLION credentials
Post by: umairsaleem010 on August 08, 2014, 06:43:13 PM
Ok, seriously, why do people do this crap (stealing passwords and other info)?  It just wastes everyone's time.  There are so many better, constructive things that people can do with their lives.

Websites this big should have the profits the atleast put a couple million in security.


Title: Re: Russian hackers steals 1.2 BILLION credentials
Post by: Gleb Gamow on August 08, 2014, 07:43:08 PM
The cake is a lie!: http://www.youarenotpayingattention.com/2014/08/08/the-lie-behind-1-2-billion-stolen-passwords/