A database of some 5 million login and password combos for Gmail and other Google accounts has been leaked to a Russian cyber security internet forum, Reuters reported. This comes in the wake of account data leaks for popular Russian web services.
Will you offer us a hand? Every gift, regardless of size, fuels our future.
Your critical contribution enables us to maintain our independence from shareholders or wealthy owners, allowing us to keep up reporting without bias. It means we can continue to make Jewish Business News available to everyone.
You can support us for as little as $1 via PayPal at firstname.lastname@example.org.
The text file containing what is purported to be compromised accounts was published on the Bitcoin Security board, listing 4.93 million entries. The forum administration has purged its passwords since, keeping only the login handles.
The accounts give access to the Gmail service, the G+ social network and other Google services. The forum user tvskit, which published the file, said 60 percent of the passwords were valid, as some users confirmed they had found their data in the base, according toRussian IT news website CNews.
Google Russia is investigating the leak, advising users to switch to stronger passwords and to enable a two-step login verification to protect their accounts.
The leak comes only a few days after Mail.ru and Yandex, both popular Russian internet services, suffered similar leaks. Those earlier leaks contained close to 6 million accounts combined.
Both companies said the overwhelming majority of exposed accounts were obsolete, suspended for suspicious behavior, or non-existent. They insisted their own databases were not compromised, saying the leaked data was accumulated through phishing and other forms of hacking over a period of years.
Users can check their email addresses here, to discover whether or not they’ve been compromised: Hacked-db security specialists, dedicated to provide monitoring and protection to email and social media accounts leaked by hackers around the world, provides companies and individuals the option to monitor and protect accounts from hijacking attempts that can strike nearly all companies.