Over 272 Million Email Accounts Stolen From Yahoo, Gmail Etc.

Posted by: lukwago J in Business May 5, 2016

A new report shows that hackers from Russia have obtained login credentials for more than 272.3 million email accounts,^[5] which are now available for sale in Russia’s criminal underworld, a Most of them are Mail.ru accounts, though the list also includes smaller fractions of Google, Yahoo, and Microsoft email users.^[1]

Check also: How to use Dmail to cancel your sent email

The discovery comes from Hold Security, with Reuters saying it’s one of the biggest stashes of credentials to be discovered since the cyber attacks that hit U.S.^[2] banks and retailers in 2014.

Alex Holden, founder and chief information security officer at Hold Security, has uncovered some of the largest known data breaches in previous years, including the attacks on JPMorgan, Target,^[6] and Adobe Systems.

Researchers found the treasure trove of information by accident, after discovering a young Russian hacker on a forum. He was bragging that he had collected and was going to give away a large number of stolen credentials that amounted to 1.17 billion records.^[4]

After eliminating duplicates, Holden said he found 57 million Mail.ru accounts, which is an enormous number compared to the 64 million monthly users the service said it had late last year.^[1] The database includes tens of millions of credentials from Gmail (24 million), Microsoft (33 million), and Yahoo (40 million), and hundreds of thousands of accounts from German and Chinese email providers.^[9]

Thousands of stolen credentials belong to employees of some of the largest U.S. banks,^[3] manufacturing and retail companies, the firm revealed.

Check also: Gmail Finally Allows You To Easily Block Annoying Senders

“This information is potent.^[8] It is floating around in the underground, and this person has shown he’s willing to give the data away to people who are nice to him,” Holden sais. “These credentials can be abused multiple times.”

Because people tend to favor certain passwords and reuse them across online services,^[10] this type of stolen information may be very valuable to certain people.

But the unidentified hacker, who obtained the data from various unspecified sources, was looking to sell it for just $1 and made it available to Holden in return of favorable comments.^[1]

Hold Security contacted the affected organizations 10 days ago, with Reuters saying that the company’s policy is to return data it recovers at little or no cost to the firms that were breached.^[3]

What’s more disturbing is that it’s not clear yet how hackers obtained the data.^[6]

Source: BGR

Check also;

This is not a Paywall, but Newslex Point's journalism consumes a lot of time, hard-work and money. That's why we're kindly requesting you to support us in anyway they can, for as little as $1 or more, you can support us .

Please use the button below to contribute to Newslex Point, Inc. using a credit card or via PayPal.