This password leak set is truly a dream treasure for the global hacker world, when it can enhance its online attack capabilities.
Cybersecurity experts are buzzing about what is believed to be the largest password leak ever.
On July 4, a rookie on a popular hacker forum posted a file containing nearly 10 billion stolen passwords in the form of textResearchers at Cybernews were the first to discover this post.
“Christmas is coming early,” a user nicknamed “ObamaCare” excitedly shared. “I would like to introduce the new rockyou2024 password list with over 9.9 billion passwords!”
RockYou2024 – The Treasure of the Hacker World
This huge collection of passwords named RockYou2024 is an invaluable tool for scalping attacks.
Scalping attacks are a common method that hackers use to guess user passwords by trial and error. They oftenautomated scripts to try a batch of passwords in a short time. With this huge database of leaked passwords, Hackers have almost endless sources of passwords to experiment with.
“In essence, the RockYou2024 leak is a compilation of actual passwords used by users across the globe, ” said researchers at Cybernews. ” Revealing such a large number of passwords to bad actors significantly increases the risk of credential stuffing attacks.”
According to Cybernews experts, this list may be the largest password leak ever, surpassing the previous record of RockYou2021 with about 8.4 billion passwords.
In fact, user “ObamaCare” claims to have used the old list and updated it with new leaked data over the past 3 years. As a result, 1.5 billion new passwords were added to the previous collection to create RockYou2024.
“I’ve been updating rockyou21 with new data collected from recently leaked databases on multiple forums this year and year last year,” the hacker said, adding that they had also added to the recently compromised passwords they had collected themselves.
The RockYou2024 leaked password list has just appeared, so at the time of this writing, it is unclear whether any personal data has been compromised. directly caused by this incident or not.
Anyone who has signed up for any online service should assume that their password is on this list. Pros n Security recommends that users update their passwords and enable multi-factor authentication wherever possible.