A file containing 1.4 billion passwords that have not been encrypted (or clear text) are circulating on the Dark Web.
The file contains over 1,4 billion email addresses, passwords and other credentials, all in clear text, and was discovered by company security 4iQ.
The file is 41 gigabytes in size and was discovered on December 5. It was updated at the end of last month, which shows that the data είναι τωρινά και χρησιμοποιούνται από τρίτους. Η ταυτότητα του hacker who published them is not known, but left details of any donations to Bitcoin and Dogecoin.
"None of the passwords are encrypted and what scares us is that we tried some of them and most of them work." said Julio Casal, founder of 4iQ. “The breach is almost double the size of the previous largest leak, the list from the Feat.in which exposed 797 million registrations.”
The Exploit.in list is included in this dump, as are the files that have been reported to have been stolen before. But much of the data seems to be completely new.
See the pictures uploaded by medium.com
The security company tried to contact some of those on the list, and the e-mail addresses of many proved to be active, although in most cases the passwords were no longer used.
But no matter how we do it, the size of the leak is a treasure for hackers, as all these passwords together are a first-class library for brute force attacks…