Filed Under:

1.2 Billion Web Credentials Said To Be In Russian Gang's Hands

Play associated audio

In what's believed to be the largest stockpile of stolen Internet credentials in history, a Russian hacking ring has gathered more than 1.2 billion unique Internet credentials, according to Web security experts. The relatively small group has reportedly collected passwords along with user names and email addresses.

"This year is already on track to be the year of the mega-mega breach," Orla Cox, director of security response for the anti-virus software company, Symantec.

The news was first reported by The New York Times, which says the group attacked all kinds of websites to steal data: large and small, and in countries from Russia to the U.S. and elsewhere.

Milwaukee-based Hold Security confirms to NPR it discovered the breach. The confidential material was gathered from more than 420,000 websites, ranging from small operations to those of major corporations.

Hold Security hasn't revealed which businesses are vulnerable, in part because of nondisclosure agreements and in part because many of their websites remain vulnerable. Security experts say it's unclear what the hackers will do with the data, so it's smart to go ahead and change your passwords.

"I think all Internet users should assume they've been impacted by this," says Cox. "Clearly these aren't opportunists, they aren't hobbyists. These are full time cyber-criminals they have been likely carrying this out for a number of months, maybe even years."

As for more details about the hacking gang, the Times says it has grown more ambitious since starting out as a spam operation in 2011.

From the Times:

"The hacking ring is based in a small city in south central Russia, the region flanked by Kazakhstan and Mongolia. The group includes fewer than a dozen men in their 20s who know one another personally — not just virtually. Their computer servers are believed to be in Russia."

Copyright 2014 NPR. To see more, visit


No Meekness Here: Meet Rosa Parks, 'Lifelong Freedom Fighter'

As the 60th anniversary of the historic Montgomery Bus Boycott approaches, author Jeanne Theoharis says it's time to let go of the image of Rosa Parks as an unassuming accidental activist.

Internet Food Culture Gives Rise To New 'Eatymology'

Internet food culture has brought us new words for nearly every gastronomical condition. The author of "Eatymology," parodist Josh Friedland, discusses "brogurt" with NPR's Rachel Martin.
WAMU 88.5

World Leaders Meet For The UN Climate Change Summit In Paris

World leaders meet for the UN climate change summit in Paris to discuss plans for reducing carbon emissions. What's at stake for the talks, and prospects for a major agreement.


Payoffs For Prediction: Could Markets Help Identify Terrorism Risk?

In a terror prediction market, people would bet real money on the likelihood of attacks. NPR's Scott Simon speaks with Stephen Carter about whether such a market could predict — and deter — attacks.

Leave a Comment

Help keep the conversation civil. Please refer to our Terms of Use and Code of Conduct before posting your comments.