Massive hack steals 2M passwords for Facebook, Google, Twitter, Yahoo, ADP and more accounts

By Alexandra Burlacu | Dec 05, 2013 07:33 AM EST

Share This Story

  • Print
  • Email


A massive hack has stolen usernames and passwords for nearly 2 million accounts on Facebook, Twitter, Google, Yahoo, LinkedIn, and others.

Hackers managed to accomplish this massive data breach through key-logging software maliciously installed on numerous computers worldwide.

Follow us

Researchers at cyber security company Trustwave discovered the breach and said that the virus has been stealing login credentials for popular websites over the past month and sending the captured usernames and passwords to a server the hackers controlled.

The hack used the Pony Botnet Controller and Trustwave researchers tracked that server to the Netherlands. The researchers have been tracking this botnet and reported that new instances continue to appear.

"One of the instances we've run into is larger than the last with stolen credentials for approximately two million compromised accounts," noted Trustwave. "In comparison to the last instance of Pony that we talked about, with statistics that looked like a hit-and-run operation, this one spiked at the beginning but was otherwise fairly stable and consistent in its daily 'revenue.'"

The researchers found stolen credentials for more than 93,000 websites and have tried to break down the numbers, which include:

  • 318,000 Facebook accounts
  • 70,000 Google, Google+ and YouTube accounts
  • 60,000 Yahoo accounts
  • 22,000 Twitter accounts
  • 9,000 Odnoklassniki accounts (Russian social network)
  • 8,000 ADP accounts
  • 8,000 LinkedIn accounts

Trustwave has notified affected companies of the breach. Facebook, ADP, LinkedIn and Twitter reportedly told CNNMoney that they have notified compromised users and reset their passwords.

The cyber security company further highlights the importance of a good password and offers detailed statistics on the current password situation. Trustwave points out that the Top 10 passwords are still the well-known, banal ones such as "1234," "123456," "1111," "password," and others such.

The length and complexity of most passwords is not how it should be, and the company strongly advises all users to come up with more complex passwords in order to increase security. Trustwave's post (link in third paragraph) offers several graphs and details regarding password complexity, so it might be a good idea to check it out and beef up your cyber security.



Get the Most Popular Mobile&Apps Stories in a Weekly Newsletter

Trustwave Security, Pony Botnet Controller, Facebook Hack, Twitter, google, Yahoo, LinkedIn, ADP

Join Our Conversation

The HTC logo is seen with different devices from the brand HTC M10 Perfume Launching A Month Later After MWC 2016
Lava Unleashes New P7 Device Into The Indian Market
New Disney Phone Coming To Japan
Xiaomi Locks Redmi Note 3, Mi 4c And Mi Note Pro; Others To Follow Suit?
Tablet / Laptop / PC
Dell Venue 7 and Venue 8 Dell unveils Venue 7 and Venue 8 Android 4.3 Jelly Bean tablets
Retina iPad Mini facing delays, may not launch until early next year
Refurbished 128GB iPad with Retina Display now available on the Apple Online Store
Samsung Galaxy Note 10.1 – 2014 Edition: Pricing and availability now official
Amazon Logo Amazon reportedly to launch ‘Firetube’ set-top box before 2013 holidays
Samsung Galaxy Note 3 and Galaxy Gear India launch: Pricing and availability
Samsung Galaxy Gear Android smartwatch now up for pre-order in Canada
Samsung Galaxy Gear 2 reportedly in the works already, may debut at CES or MWC 2014
OS / Software
HTC Logo HTC reportedly considering Android/Windows Phone dual-booting smartphone as Microsoft pushes for deeper Windows mobile integration
iOS 7 Chrome Incognito mode leaks private searches due to bug
Sprint HTC One Android 4.3 Jelly Bean already rolling out, AT&T, T-Mobile & Verizon to follow
Microsoft Windows 8.1 now available for pre-order
Internet / Social Media
Google Downtime Google blacks out for two minutes, causes 40 percent drop in world’s Internet traffic
Xbox Music web player is live and ready for Xbox Music Pass subscribers
Facebook Android app collected phone numbers even if users never logged in
Firefox 22 brings support for web video calls, 3D gaming, and Unreal Engine 3
What's App
ZTE's new lease program ZTE’s new Lease-to-own Program for Mobile Devices
LG’s G Pay to Take on Google, Samsung and Apple
Facebook: Taxes in the UK and a new Shopping tab
Samsung’s VR Headset to be Released at $99, Hulu Jumps Onboard with Apps Ready

Most Popular

© 2016 IBT Media Inc. All Rights Reserved.mobilenapps