C&P
BEWARE…
Users who think they might be affected should update their passwords immediately…
They’re available for purchase on the dark web, with the vendor selling them going by the name ‘SunTzu583’.
According to HackRead, SunTzu583 is asking for $450 for 21,800,969 Gmail accounts, 75% of which supposedly contain decrypted passwords, with the remaining 25% hashed.
SunTzu583 has a separate $200 listing for a further 4,928,888 accounts, which allegedly contain email addresses and clear text passwords.
HackRead says these were stolen as part of LinkedIn, Adobe and Bitcoin Security Forum.
The cybercriminal is also selling 5,741,802 Yahoo accounts, many of which were stolen as part of MySpace, LinkedIn and Adobe hacks, for $250.
However, SunTzu583 has informed potential buyers that “Not all these combinations work directly on Yahoo, so don’t expect that all these email and passwords combinations work on Yahoo.”
Yahoo has been rocked by two of the biggest hacks of all time, and users who think they might be affected should take steps to protect themselves immediately, such as updating their passwords.
You can find out if you’ve been hacked by checking your email address at haveibeenpwned.com.
www.cnet.com
The Gooligan malware attack targeting Android devices has infected more than a million Google accounts and growing by 13,000 new users a day. It affects devices running Android 4 (Jelly Bean, KitKat) and Android 5 (Lollipop), according to Check Point.
Gooligan spreads via apps from third-party app stores and malicious links in phishing attack messages. It downloads a rootkit to steal authentication tokens to breach data from Google Play, Gmail, Google Photos, Google Docs, G Suite, Google Drive and other programs. It also installs app that can steal your account information to post fake ratings and reviews to raise the profile of these apps.
Has your account been compromised? It’s easy to check to find out.
[SIZE=4]Check your account at Check Point[/SIZE]
Head to the Check point website and enter your email address. It will immediately let you know if your account has been breached.