Another 127 million passwords from eight websites came up for sale on the Dream Market, a dark web illegal products market. The discovery was made by the British website The Register last Thursday (14), which reported that a complete package of stolen information could be obtained for the equivalent of $ 54,000 in Bitcoin.
READ: New WhatsApp scam hits thousands in Brazil
The ad author also sold last week files containing information about a 620 million data leak from apps like MyHeritage, MyFitnessPal and Dubsmash. This week's sale data includes the hacked server banks of the Ixigo ticket searcher, the YouNow live video tool and the Stronghold Kingdoms online game.
Millions of stolen passwords were sold on the dark web black market Photo: Reproduction / Pond5
Want to buy a cell phone, TV and other discounted products? Meet the Compare dnetc
Dream Market is a website that houses an illegal market accessible only by browsers operating on the Tor network. Launched in 2013, the meeting place for all types of criminal advertisements, ranging from drug and weapons supply to databases sourced from hacking attacks such as the 127 million password bundle.
Hackers offer no proof that the data advertised on Dream Market is true. However, gradually the companies involved in the attack confirm that, in fact, they had broken down infrastructures. This is the case with YouNow, which admitted to technology site Bleeping Computer as being targeted by criminals, but, as it uses Google and Facebook login, ensures that stolen information does not include passwords or payment data as it is not stored on servers. own company.
Passwords sell only from previous hacking scams Photo: Pound5
In possession of personal information sold on the dark web, criminals can scam e-commerce sites, airlines, finance and hotels, for example. Studies show that about half of the attacks could be aimed at hacking victim accounts into bank and hotel services. People who repeat passwords in different logins facilitate criminal action, as a leak gives access to more than one user service.
To find out if you were a victim of this new hacker attack, you can use services like Have I been pwned. The page crosses user-informed emails and crosses public databases of stolen information to warn if their credentials are in the hands of criminals.
Via Bleeping Computer and TechCrunch
How to remove password from lock screen in Windows 8.1? Ask questions on the dnetc forum.
What ransomware: five tips to protect yourself