Filed Under:

1.2 Billion Web Credentials Said To Be In Russian Gang's Hands

Play associated audio

In what's believed to be the largest stockpile of stolen Internet credentials in history, a Russian hacking ring has gathered more than 1.2 billion unique Internet credentials, according to Web security experts. The relatively small group has reportedly collected passwords along with user names and email addresses.

"This year is already on track to be the year of the mega-mega breach," Orla Cox, director of security response for the anti-virus software company, Symantec.

The news was first reported by The New York Times, which says the group attacked all kinds of websites to steal data: large and small, and in countries from Russia to the U.S. and elsewhere.

Milwaukee-based Hold Security confirms to NPR it discovered the breach. The confidential material was gathered from more than 420,000 websites, ranging from small operations to those of major corporations.

Hold Security hasn't revealed which businesses are vulnerable, in part because of nondisclosure agreements and in part because many of their websites remain vulnerable. Security experts say it's unclear what the hackers will do with the data, so it's smart to go ahead and change your passwords.

"I think all Internet users should assume they've been impacted by this," says Cox. "Clearly these aren't opportunists, they aren't hobbyists. These are full time cyber-criminals they have been likely carrying this out for a number of months, maybe even years."

As for more details about the hacking gang, the Times says it has grown more ambitious since starting out as a spam operation in 2011.

From the Times:

"The hacking ring is based in a small city in south central Russia, the region flanked by Kazakhstan and Mongolia. The group includes fewer than a dozen men in their 20s who know one another personally — not just virtually. Their computer servers are believed to be in Russia."

Copyright 2014 NPR. To see more, visit http://www.npr.org/.

NPR

Chinese Dissident Artist Ai Weiwei Restricted To 20-Day U.K. Visa

Ai says he was denied a six-month visa because U.K. officials said he didn't list a criminal conviction in his application. Ai was imprisoned in China, but he notes he was never charged with a crime.
NPR

Humans Aren't The Only Ones To Go Ape Over Diets: Chimps Detox, Too

A group of Ugandan chimps has found a great way to boost their mineral intake and neutralize bitter compounds in their diet: by eating clay.
WAMU 88.5

The Politics Hour - July 31, 2015

Join us for our weekly review of the politics, policies, and personalities of the District of Columbia, Maryland and Virginia.

NPR

Debris Found In The Indian Ocean May Be From Missing Malaysia Airlines Jet

Investigators believe a piece of debris found on the French island of Réunion in the Indian Ocean could be from Malaysia Airlines Flight 370, which disappeared in March 2014.

Leave a Comment

Help keep the conversation civil. Please refer to our Terms of Use and Code of Conduct before posting your comments.