![]() ![]() If you want to test some of your email addresses, but you’re afraid of downloading the whole leak, please contact me by email or Twitter and I will check for you. For example, I found one of my old email address 4 times, with 4 passwords I used on some services. Results, even if it includes some false positives, we can find interesting things. The 40Gb file contains 1.4 billion email addresses and passwords and is given with a small tool allowing you to search for email in few seconds, making this breach one of the biggest available resource for now. The main part of the compilation comes from known leak but there are some new ones. A data breach compilation has been published this month. You just have to give your email adress and the site compares it with his databases. Several websites can help you to know if your email address already leaked. However, once data are in the wild, password cracking is only about time ! There are many hashing methods, resulting in more or less easy password cracking. It means that they are not stored in plain text inside the database. It should be noted that often, stolen password are hashed. It's not always that important so It's not famous but if you use many web services, it's likely that one of your account is in one of these databases. Adobe (2013) – 153 Millions stolen accounts.OVH Kimsufi en 2017 (Same database has already been stolen 2 years ago) – 969 084 stolen accounts.Sony (PlayStation Network) en 2011 – 77 Millions stolen accounts including users bank informations.LinkedIn (2012/2016) – 164 Millions stolen accounts.Dailymotion (2016) – 85,2 Millions stolen accounts.These databases are then sold or published, offering the possibility for anyone to get users credentials. Several tools and techniques are very efficient, depending on the target.įurthermore, big companies databases stealing is not unusual, spreading users personal data over the Internet. Well, getting a password is not as hard as you think. If anyone can get access to one account, in one way, the entire set of data and accounts using this password is compromised. We won’t ever tell it enough, using the same password on different services is NOT a good idea. Finally, some solutions will be presented. I’ll show you a little tool that could allow a bad guy to exploit the “password reuse”. No, this post will talk about the importance of using different passwords for every services. This post won’t deal with the password complexity even if raising people awareness about this is important because tons of resources are available on Internet. It makes a lot of websites, account, and so, passwords. Nowadays, Internet is used for (almost) everything and by (almost) everyone, from the simple cooking website to your bank account, through social networks, marketing websites or even your mailboxes. I’m sure you’ve already heard it thousand times, but questions about passwords on Internet are more than ever critical for your privacy and personal data. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |