Massive hack steals 2M passwords for Facebook, Google, Twitter, Yahoo, ADP and more accounts

By Alexandra Burlacu | Dec 05, 2013 07:33 AM EST

Share This Story

  • Print
  • Email


A massive hack has stolen usernames and passwords for nearly 2 million accounts on Facebook, Twitter, Google, Yahoo, LinkedIn, and others.

Hackers managed to accomplish this massive data breach through key-logging software maliciously installed on numerous computers worldwide.

Follow us

Researchers at cyber security company Trustwave discovered the breach and said that the virus has been stealing login credentials for popular websites over the past month and sending the captured usernames and passwords to a server the hackers controlled.

The hack used the Pony Botnet Controller and Trustwave researchers tracked that server to the Netherlands. The researchers have been tracking this botnet and reported that new instances continue to appear.

"One of the instances we've run into is larger than the last with stolen credentials for approximately two million compromised accounts," noted Trustwave. "In comparison to the last instance of Pony that we talked about, with statistics that looked like a hit-and-run operation, this one spiked at the beginning but was otherwise fairly stable and consistent in its daily 'revenue.'"

The researchers found stolen credentials for more than 93,000 websites and have tried to break down the numbers, which include:

  • 318,000 Facebook accounts
  • 70,000 Google, Google+ and YouTube accounts
  • 60,000 Yahoo accounts
  • 22,000 Twitter accounts
  • 9,000 Odnoklassniki accounts (Russian social network)
  • 8,000 ADP accounts
  • 8,000 LinkedIn accounts

Trustwave has notified affected companies of the breach. Facebook, ADP, LinkedIn and Twitter reportedly told CNNMoney that they have notified compromised users and reset their passwords.

The cyber security company further highlights the importance of a good password and offers detailed statistics on the current password situation. Trustwave points out that the Top 10 passwords are still the well-known, banal ones such as "1234," "123456," "1111," "password," and others such.

The length and complexity of most passwords is not how it should be, and the company strongly advises all users to come up with more complex passwords in order to increase security. Trustwave's post (link in third paragraph) offers several graphs and details regarding password complexity, so it might be a good idea to check it out and beef up your cyber security.



Get the Most Popular Mobile&Apps Stories in a Weekly Newsletter

Trustwave Security, Pony Botnet Controller, Facebook Hack, Twitter, google, Yahoo, LinkedIn, ADP

Join Our Conversation

Sony Xperia Z3 Sony continues Android 5.0 Lollipop rollout to more devices & markets worldwide (VIDEO)
ASUS ZenFone 2 available in the U.S. from Amazon for $219
HTC One E9+ officially listed with 2K display on company’s Chinese website
Samsung Galaxy S6, Galaxy S6 Edge Best Buy pre-orders come with free wireless charging pad
Tablet / Laptop / PC
Dell Venue 7 and Venue 8 Dell unveils Venue 7 and Venue 8 Android 4.3 Jelly Bean tablets
Retina iPad Mini facing delays, may not launch until early next year
Refurbished 128GB iPad with Retina Display now available on the Apple Online Store
Samsung Galaxy Note 10.1 – 2014 Edition: Pricing and availability now official
Amazon Logo Amazon reportedly to launch ‘Firetube’ set-top box before 2013 holidays
Samsung Galaxy Note 3 and Galaxy Gear India launch: Pricing and availability
Samsung Galaxy Gear Android smartwatch now up for pre-order in Canada
Samsung Galaxy Gear 2 reportedly in the works already, may debut at CES or MWC 2014
OS / Software
HTC Logo HTC reportedly considering Android/Windows Phone dual-booting smartphone as Microsoft pushes for deeper Windows mobile integration
iOS 7 Chrome Incognito mode leaks private searches due to bug
Sprint HTC One Android 4.3 Jelly Bean already rolling out, AT&T, T-Mobile & Verizon to follow
Microsoft Windows 8.1 now available for pre-order
Internet / Social Media
Google Downtime Google blacks out for two minutes, causes 40 percent drop in world’s Internet traffic
Xbox Music web player is live and ready for Xbox Music Pass subscribers
Facebook Android app collected phone numbers even if users never logged in
Firefox 22 brings support for web video calls, 3D gaming, and Unreal Engine 3
What's App
Amazon Prime Now Amazon Prime Now service rocks NYC, offers fast deliveries within the hour
Flipboard for Windows Phone finally available, but requires 1GB of RAM (VIDEO)
Vine gets major update, lets you upload previously-shot videos & more (VIDEO)
BlackBerry Messenger (BBM) finally hits Windows Phone – Available as a free download now

Most Popular

Copyright © 2015 Mobile & Apps All rights reserved. mobilenapps
Real Time Analytics