Comment on 16 Billion Apple, Facebook, Google And Other Passwords Leaked — Act Now
drspod@lemmy.ml 1 day agoThis article is about credentials that are stolen directly from users’ devices that are compromised with malware. So they will be that user’s passwords for whatever services they were using while infected with the malware. This is why the dumps contain passwords for just about every online service that exists.
This isn’t an actual database breach of the major providers.
A_norny_mousse@feddit.org 1 day ago
Thanks for clarifying. Still, does this affect every “device” user out there? There must be some sort of explanation here, what’s the attack vector etc. I couldn’t find it even on that Lithuanian guy’s website.
drspod@lemmy.ml 1 day ago
This forbes blog is about this article:
cybernews.com/…/billions-credentials-exposed-info…
So there isn’t really an explanation other than “somebody collected these somehow and left the data unsecured.”
The attack vector for infostealer malware is usually social engineering, getting unwary users to download infected trojanized software via phishing and malvertising etc.
If you follow security news, you will see articles about infostealer malware campaigns all the time.
www.theregister.com/…/minecraft_mod_malware/
thehackernews.com/…/malicious-pypi-package-masque…
thehackernews.com/…/rust-based-myth-stealer-malwa…
thehackernews.com/…/eddiestealer-malware-uses-cli…
Geodad@lemmy.world 1 day ago
Oh, so I’m probably safe.
I don’t do mainstream social media, and I don’t answer phone calls, texts, or emails from unknown sources.
Mama told me not to talk to strangers, and I took that into the digital age.