16:05 GMT +323 July 2019
Listen Live
    Black Hats, White Hats & The Dark Web, A Quick Guide Through Cyberspace

    The Real Deal: More Than 200 Million Yahoo Users’ Info for Sale on Dark Web

    © Photo : Pixabay
    Tech
    Get short URL
    136

    Data from over 200 million Yahoo users was listed for sale on Tuesday on Dark Web marketplace TheRealDeal, by an infamous hacker behind many other proven data dumps.

    The listing was posted by a hacker known as Peace_of_Mind (Peace), who was also behind the hacked data sales from websites such as LinkedIn, MySpace, Tumblr, Fling.com, and VK.com — amounting to information on over 800 million users in total since 2012. “Peace” has reportedly made over $65,000 from the dumps so far.

    The current data up for sale is priced at 3 Bitcoin (approximately $1,860), and includes usernames, MD5-hashed passwords, and dates of birth. Some of the records also reportedly include backup email addresses, countries, and zip codes. The data is old, however, dating back to 2012.

    While the passwords are encrypted, MD5 hashes are extremely easy to decrypt now, and can be done almost instantly.

    “We are aware of a claim,” Yahoo said in a statement to SoftPedia. “We are committed to protecting the security of our users’ information and we take any such claim very seriously. Our security team is working to determine the facts. Yahoo works hard to keep our users safe, and we always encourage our users to create strong passwords, or give up passwords altogether by using Yahoo Account Key, and use different passwords for different platforms.”

    Motherboard was sent a sample of 5,000 records by the hacker, and confirmed that two dozen of the usernames tested did correspond with actual accounts. When the reporter attempted to contact the breached accounts, however, many of the emails were returned as “undeliverable.”

    It is likely that the company had issued password resets to accounts that were breached to preemptively secure even abandoned accounts, though Yahoo has not yet verified what steps they have taken.

    Related:

    Clinton’s Campaign Computer System Hacked by Alleged Russian Intelligence
    Susan Sarandon: Democrats Should Address Content of Hacked Emails
    The Plane You're About to Board Can Easily Be Hacked and Here's Why
    Hacked Emails Reveal NATO Pushed Obama Administration to be Tough on Russia
    Second Brexit Petition Hacked by Fake Signatories from Around the World
    Tags:
    Bitcoin, deep web, Dark Web, Hacker, TheRealDeal, Yahoo, Peace_of_Mind
    Community standardsDiscussion
    Comment via FacebookComment via Sputnik