A new report by Cybernews and Forbes has found a historic data breach that stole more than 16 billion login credentials. Analysts are calling it the biggest data leak ever reported. Some even go to the level of calling it the mother of all data breaches.
The report claims that accounts were hacked and data was extracted using infostealer malware. Forbes reports that researchers involved in a months-long investigation found several infostealers were used for the password leak of this scale.
After hacking billions of login credentials from Google, Apple, VPNs and Telegram, cybersecurity researchers found that the hackers put up the data for sale online. Reports quoting experts believe that in the coming days, this breach can lead to possible identity theft, phishing attacks, and account takeovers all over the world.
Infostealer is a type of malware employed to gather sensitive information stored on a device. The malware enables an attacker to perform further cybercriminal activity on the hacked device. After the device is attacked, the hacker can perform activities like identity theft, financial fraud or extortion, account takeover, and ransomware attacks.
After the hacker gets access, the Infostealer uses various techniques to acquire data after the hacker gets access to the device, like a computer or phone. The hacker can steal data in various forms. Hackers can take control of your credentials, browser data, messaging and email chat logs, documents, and machine-specific properties.
Once the infostealer is installed, it starts to collect data from the infected system. The malware does not take much time to infect and take control of the system. It usually takes as little as one minute to collect the targeted data and gather the data.
Once the data is collected, infostealers often sell or trade it in centralized ad hoc marketplaces or platforms, such as Telegram.
Infostealer malware attacks pose a significant threat to common people and organizations alike. This malware silently steals sensitive data, including login credentials, financial information, and personal details. The best practice to secure yourself from such malware attacks is by implementing strong password hygiene. You can also enable multi-factor authentication and update software in a timely manner.
Zubair Amin is a Senior Journalist at NewsX with over seven years of experience in reporting and editorial work. He has written for leading national and international publications, including Foreign Policy Magazine, Al Jazeera, The Economic Times, The Indian Express, The Wire, Article 14, Mongabay, News9, among others. His primary focus is on international affairs, with a strong interest in US politics and policy. He also writes on West Asia, Indian polity, and constitutional issues. Zubair tweets at zubaiyr.amin
Google Workspace AI Studio: How To Build Your Own Assistant Without Coding, Learn In Easy Steps
Google has launched its new feature in Google Workspace through which users can create custom…
Vladimir Putin during his visit to India, announced that the capacity of the Kudankulam Nuclear…
The Congress alleged that Mallikarjun Kharge and Rahul Gandhi were not invited to the Presidential…
