Largest password data breach in history has been leaked online

password
Credit: CC0 Public Domain

Back in 2009, threat actors hacked into the website servers of social app RockYou, accessing over 32 million user passwords stored in plaintext. Now, in what appears to be the largest data breach in history, attackers have compromised 262 times as many passwords. With 3.2 billion leaked passwords from multiple databases, this attack has been dubbed RockYou2021.

As only 4.7 billion utilize the Internet, that means RockYou2021 could actually involve the of nearly twice the . Therefore, users should immediately check to see whether their passwords were affected by this leak. Users can check for password compromise using the website Have I Been Pwned or the CyberNews personal data leak checker.

Threat actors can take advantage of the RockYou2021 password collection by combining 8.4 billion unique password variations with existing breach compilations of email addresses and usernames. The hackers could then use these credentials for dictionary and password spraying attacks against an unknowable number of online accounts.

So far, research suggests that all of the passwords involved in this leak have non-ASCII characters between 6-20 characters each, with white spaces removed.

If you believe that one or more of your passwords may have been compromised in the RockYou2021 breach, you can take mitigation steps by immediately changing your passwords for all of your online accounts. In fact, using a password manager can help you create strong, complex passwords that don't have to be easy to remember. Furthermore, you can enable (2FA) on all of your accounts.

Finally, as always, make sure to always closely examine all unsolicited spam emails, calls and text messages for potential phishing activity. Most importantly, never click on links or download any executables in messages that you weren't expecting or from senders you don't recognize.


Explore further

Complex passwords aren't always best

More information: Mikalauskas, E. "RockYou2021: Largest Password Compilation of All Time Leaked Online with 8.4 Billion Entries." CyberNews, CyberNews, 7 June 2021, cybernews.com/security/rockyou … -compilation-leaked/

© 2021 Science X Network

Citation: Largest password data breach in history has been leaked online (2021, June 9) retrieved 20 September 2021 from https://techxplore.com/news/2021-06-largest-password-breach-history-leaked.html
This document is subject to copyright. Apart from any fair dealing for the purpose of private study or research, no part may be reproduced without the written permission. The content is provided for information purposes only.
1955 shares

Feedback to editors