A ‘COMB’ collection of over 3 Billion user logins were posted on the RaidForums cybercrime community.
COMB stands for “compilation of many breaches”. This latest leak contains an impressive 3.27 billion unique combinations of email accounts and passwords readable in plain text. This compilation aggregates data from past Netflix, LinkedIn, Exploit, and other breaches. The leak contains publicly available info, which was cleaned, arranged in alphabetical order, and in a tree-like structure.
The hackers ask $2 for the password to unlock the zip file containing the data. However, users of the forum who paid for the unlock key, complained that the files were corrupted or missing.
“Use of a password manager and MFA are still two of the best ways online accounts can be protected from brute-force and password-spraying attacks. These ‘keys to the kingdom’ are what malicious actors covet because it gives them access to wreak havoc.”
Terence Jackson, CISO at Thycotic
Check the source.
Read More
Attribution:
Photo by Frank OToole on Unsplash
