Almost 100 million passwords in plain text leaked from Rambler
Another data leak from 2012, and this time, is Russia's largest Internet portal and email service provider Rambler.ru.
Rambler.ru, also known as the Russian Yahoo, suffered an extensive leak in 2012. An unknown hacker or a group of hackers managed to steal nearly 100 million accounts, including plaintext passwords.
A copy of the hacked database contains details about 98 167 935 Rambler.ru users who were originally stolen on February 17, 2012, but this information is hushed up.
The leaked user database includes user names, email addresses, ICQ numbers, social network account details, passwords, and some internal data.
')
The leaked hacker reported that it uses Jabber ID daykalif@xmpp.jp, which gave LeakedSource more than 43.5 million user records from another 2012 hacking service, the Last.fm music streaming service.
According to LeakedSource, none of the passwords was hashed, which means that the company stores the passwords of its users in unencrypted text format.
This is similar to hacking VK.com , in which accounts of 171 million users were removed from the Russian social network, where, as it turned out, passwords are also stored in the unencrypted form, without any hashes or salt mixing.
Again, as you would expect, the most common passwords used by Rambler.ru users include "Asdasd", "123456", "000000", "654321", "123321", or "123123".
LeakedSource added a leak to its database, so Rambler.ru users can check if they have been compromised.
Rambler.ru is another victim who joined the list of “Mega-Breaches”, revealed in recent months, when hundreds of millions of online credentials, obsolete for years, including LinkedIn, MySpace, vk.com, Tumblr, and Dropbox, were exposed in Internet.
Rambler has not responded to the incident.
* Free translation of this article
Rambler.ru, also known as the Russian Yahoo, suffered an extensive leak in 2012. An unknown hacker or a group of hackers managed to steal nearly 100 million accounts, including plaintext passwords.
A copy of the hacked database contains details about 98 167 935 Rambler.ru users who were originally stolen on February 17, 2012, but this information is hushed up.
The leaked user database includes user names, email addresses, ICQ numbers, social network account details, passwords, and some internal data.
')
The leaked hacker reported that it uses Jabber ID daykalif@xmpp.jp, which gave LeakedSource more than 43.5 million user records from another 2012 hacking service, the Last.fm music streaming service.
According to LeakedSource, none of the passwords was hashed, which means that the company stores the passwords of its users in unencrypted text format.
This is similar to hacking VK.com , in which accounts of 171 million users were removed from the Russian social network, where, as it turned out, passwords are also stored in the unencrypted form, without any hashes or salt mixing.
Again, as you would expect, the most common passwords used by Rambler.ru users include "Asdasd", "123456", "000000", "654321", "123321", or "123123".
LeakedSource added a leak to its database, so Rambler.ru users can check if they have been compromised.
Rambler.ru is another victim who joined the list of “Mega-Breaches”, revealed in recent months, when hundreds of millions of online credentials, obsolete for years, including LinkedIn, MySpace, vk.com, Tumblr, and Dropbox, were exposed in Internet.
Rambler has not responded to the incident.
* Free translation of this article
Source: https://habr.com/ru/post/357176/
All Articles