26 Billion Records Leaked, Users of LinkedIn, X, Venmo And More Panic Over Increased Cybercrime Risk
Link to article
If you use a computer, your data likely got leaked in what researchers have called the mother of all data breaches.
Twenty brands have had over 100 billion leaked records, with the largest being Tencent's 1.5 billion. Brands more familiar to Western consumers such as LinkedIn, X, Venmo, Canva, Apollo and Adobe have also been hit. Cybernews Head of Security Research Mantas Sasnauskas summed up the scale of the shocking breach, saying "Probably the majority of the population have been affected."
"The dataset is extremely dangerous as threat actors could leverage the aggregated data for a wide range of attacks," the researchers told the New York Post. It should be noted that usernames and passwords were included in the leak.
This can be especially dangerous for those who use the same password across different accounts. If a hacker knows an email and password combination on Netflix, for example, they might logically start with that combination in an attempt to gain access to more sensitive data, such as getting access to e-mail and banking accounts.
This particularly dangerous attack is called credential stuffing, where a hacked individual can have their accounts compromised across multiple services in just a few moments, leaving behind a much more devastating trail of destruction.
What would anyone even do with $26 billion dollars worth of stolen data records? According to Sasnauskas, the dataset may have been created in an attempt to build a criminal marketplace for sensitive information. Perhaps for broader distribution on the dark web, where malicious actors can buy the leaked data to prospect potential victims for their cybercrimes.
Kind of ironic as this News came from Yahoo (who is notorious for data breaches).
In regards to the Airgun Nation forum - We don't want to give the Scammers any reason to visit, re-visit, or target anyone on Airgun Nation. The typical Scammer either targets WTB ads, or takes over a vetted members account whose email has been compromised by a shared username & password.
Here's a few tips to help keep you, your friends, and fellow AGN members safe:
- Always use a strong password. If your password isn't strong, please strengthening it
- Consider using 2FA (two-factor authentication). We suggest a 2FA app like Google Authenticator (2FA via email doesn't work well as many ISP's block websites that include the word "gun"). Our 2FA is configured to ask for device authentication once every 30 days, and it works really well.
- Always research every buyer/seller before engaging in any transaction
- Never use the same password across different accounts
- Report any suspicious accounts immediately by going to the members profile and clicking the Report button