The largest collection of stolen passwords ever has been leaked to a notorious crime marketplace, according to cybersecurity researchers at Cybernews. This leak, dubbed RockYou2024 by its original poster “ObamaCare,” holds a file containing nearly 10 billion unique plaintext passwords. Allegedly gathered from a series of data breaches and hacks accumulated over several years, the passwords were posted on July 4th and hailed as the most extensive collection of stolen and leaked credentials ever seen on the forum. “In its essence, the RockYou2024 leak is a compilation of real-world passwords used by individuals all over the world,” the researchers told Cybernews. “Revealing that many passwords for threat actors substantially heightens the risk of credential stuffing attacks.” Credential stuffing attacks are among the most common methods criminals, ransomware affiliates, and state-sponsored hackers use to access services and systems. Threat actors could exploit the RockYou2024 password collection to conduct brute-force attacks against any unprotected system and “gain unauthorized access to various online accounts used by individuals whose passwords are included in the dataset,” the research team said. This could affect online services, cameras and hardware This could affect various targets, from online services to internet-facing cameras and industrial hardware. “Moreover, combined with other leaked databases on hacker forums and marketplaces, which, for example, contain user email addresses and other credentials, RockYou2024 can contribute to a cascade of data breaches, financial frauds, and identity thefts,” the team concluded. However, despite the seriousness of the data leak, it is important to note that RockYou2024 is primarily a compilation of previous password leaks, estimated to contain entries from a total of 4,000 massive databases of stolen credentials, covering at least two decades. This new file notably includes an earlier credentials database known as RockYou2021, which featured 8.4 billion passwords. RockYou2024 added approximately 1.5 billion passwords to the collection, spanning from 2021 through 2024, which, though a massive figure, is only a fraction of the reported 9,948,575,739 passwords in the leak. Thus, users who have changed their passwords since 2021 may not have to panic about a potential breach of their information. That said, the research team at Cybernews stressed the importance of maintaining data security. In response to the leak, they recommend immediately changing the passwords for any accounts associated with the leaked credentials, ensuring each password is strong and unique and not reused across different platforms. Additionally, they advised enabling multi-factor authentication (MFA), which requires an extra form of verification beyond the password, wherever possible, to strengthen cyber security. Lastly, tech users should utilize password manager software, which securely generates and stores complex passwords, mitigating the risk of password reuse across multiple accounts.

Australia pledged on Tuesday to increase investment in Pacific island nations, offering A$6.3 million ($4.3 million) to support their financial systems. Some Western banks are cutting ties with the region because of risk factors, while China is trying to increase its influence there. Some Western bankers have terminated long-standing banking relationships with small Pacific nations, while others are considering closing operations and restricting access to dollar-denominated bank accounts in those countries. "We know that the Pacific is the fastest-moving region in the world for correspondent banking services," Australian Treasurer Jim Chalmers said in a speech at the Pacific Banking Forum in Brisbane. "What's at stake here is the Pacific's ability to engage with the world," he said, with much of the region at risk of being cut off from the global financial system. Chalmers said Australia would provide A$6.3 million ($4.3 million) to the Pacific to develop secure digital identity infrastructure and strengthen compliance with anti-money laundering and counter-terrorist financing requirements. Experts say Western banks are de-risking to meet financial regulations, making it harder for them to do business in Pacific island nations, where compliance standards sometimes lag, undermining their financial resilience. Australia's ANZ Bank is in talks with governments about how to make its Pacific island businesses more profitable amid concerns about rising Chinese influence as financial services leave the West, Chief Executive Shayne Elliott said Tuesday. ANZ is the largest bank in the Pacific region, with operations in nine countries, though some of those businesses are not financially sustainable, Elliott said in an interview on the sidelines of the forum. "If we were there purely for commercial purposes, we would have closed it a long time ago," he said. Western countries, which have traditionally dominated the Pacific, are increasingly concerned about China's plans to expand its influence in the region after it signed several major defense, trade and financial agreements with the region. Bank of China signed an agreement with Nauru this year to explore opportunities in the country, following Australia's Bendigo Bank saying it would withdraw from the country. Mr. Chalmers said Australia was working with Nauru to ensure that banking services in the country could continue. ANZ Bank exited its retail business in Papua New Guinea in recent years, while Westpac considered selling its operations in Fiji and Papua New Guinea but decided to keep them. The Pacific lost about 80% of its correspondent banking relationships for dollar-denominated services between 2011 and 2022, Australian Assistant Treasurer Stephen Jones told the forum, which was co-hosted by Australia and the United States. “We would be very concerned if there were countries acting in the region whose primary objective was to advance their own national interests rather than the interests of Pacific island countries,” Mr. Jones said on the first day of the forum in Brisbane. He made the comment when asked about Chinese banks filling a vacuum in the Pacific. Meanwhile, Washington is stepping up efforts to support Pacific island countries in limiting Chinese influence. "We recognize the economic and strategic importance of the Pacific region, and we are committed to deepening engagement and cooperation with our allies and partners to enhance financial connectivity, investment and integration," said Brian Nelson, U.S. Treasury Undersecretary for Counterterrorism and Financial Intelligence. The United States is aware of the problem of Western banks de-risking in the Pacific region and is committed to addressing it, Nelson told the forum's participants. He said data showed that the number of correspondent banking relationships in the Pacific region has declined at twice the global average rate over the past decade, and the World Bank and the Asian Development Bank are developing plans to improve correspondent banking relationships. U.S. Treasury Secretary Janet Yellen said in a video address to the forum on Monday (July 8) that the United States is focused on supporting economic resilience in the Pacific region, including by strengthening access to correspondent banks. She said that when President Biden and Australian Prime Minister Anthony Albanese met at the White House last year, they particularly emphasized the importance of increasing economic connectivity, development and opportunities in the Pacific region, and a key to achieving that goal is to ensure that people and businesses in the region have access to the global financial system.

US President Joe Biden signed an executive order on Wednesday restricting investments in China, intended to further stymie China's advances in three cutting-edge technology areas: semiconductors and microelectronics, quantum information technologies and certain artificial intelligence systems. The "decoupling" of high tech from China began under Donald Trump, and the Biden administration has continued that ambition. However, the new order doesn't target US investments already invested in China, but the new ones. The Biden administration has repeatedly claimed that the US restrictions will be narrowly targeted and will not "have a fundamental impact on affecting the investment climate for China." Biden's new executive order is still subject to consultation with the US business community and the public and is not expected to take effect until next year. The order has been brewed for a long time and has generated a lot of publicity. But almost no one believes that this executive order will deal a new practical blow to Chinese high technology, because almost everyone knows that China needs American technology more than American money. The order has gained much attention because it is seen as part of a broader trend of the US drifting away from China. The promulgation and brewing process of the executive order reflects the strong desire of American political elites to suppress China's high-tech development, as well as a fierce game between those supporting the executive order and the concerns of the technology and economic sectors about a potential backfire on the US. It is a kind of compromise. Washington obviously hopes that major allies will follow Biden's executive order. The UK's Sunak government has made cautious statements, stating that it is consulting business and the financial sector before deciding whether to follow suit. In fact, China also has the ability to influence the extent to which Biden's executive order is implemented, as well as the extent to which the US will go in terms of "decoupling" from China. We are definitely not just passive recipients of US policies. American political elites are eager to "decouple" from China as quickly and deeply as possible, but they fear two things: First, this will immediately damage the performance of relevant high-tech companies in the US, undermine their influence and further innovation. The current Biden administration, in particular, does not want to incur strong resentment from Silicon Valley and Wall Street toward the escalating "decoupling," which will ultimately lead to the loss of support for the Democratic Party. Second, they are afraid of pushing China toward more resolute independent innovation to achieve breakthroughs in key technologies such as chips. If the US "decoupling" policy gives birth to major technological achievements in China, it means that Washington will completely lose the gamble: They originally wants to stifle China's high-tech development, but ends up strangling their own companies. What China needs to do next is to fully unleash our innovation vitality, continuously reduce our dependence on high-tech products from the US, and prove that as long as we are determined to achieve independent innovation, we have the ability to accomplish things. We need to prove that being pressured by the US will only make us stronger. As long as there are several solid proofs of this trend, the US policy community will fall into unprecedented chaos, and their panic will be much more severe than when they saw the rapid expansion of the Chinese economy before Trump started the trade war. Regardless of the future of China-US relations, the current battle will be the key battle that determines the future competition between China and the US. China can only win and cannot afford to lose. High-tech products such as chips are not isolated. The innovation power of China's entire manufacturing industry and the creative vitality of the whole society are the foundation for shaping these key achievements. When pressured by the US, our society needs to generate confidence and resilience from all directions, and we need to accelerate and seize every opportunity, rather than shrink and simply defend. Otherwise, the US will gain the upper hand in momentum, and we will truly be in a passive and defensive position. We must see that the US is on the offensive, but its offensive is becoming weaker and weaker, and it is always hesitant with each step. What is presented to China are difficulties and risks, but also the dawn of victory.

HONG KONG, July 9 (Reuters) - Nornickel (GMKN.MM), opens new tab is in talks with China Copper to form a joint venture that would allow the Russian mining giant to move its entire copper smelting base to China, four sources with knowledge of the matter told Reuters. If the move goes ahead, it would mark Russia's first uprooting of a domestic plant since the U.S. and Britain banned metal exchanges from accepting new aluminium, copper and nickel produced by Russia. It also means Nornickel's copper will be produced within the country where it is most consumed. Nornickel said in April it planned to close its Arctic facility and build a new plant in China with an unnamed partner. Executives at China Copper, owned by the world's largest aluminium producer Chinalco (601600.SS), opens new tab, flew to Moscow in June to discuss a possible joint venture, one of the sources said, adding that details of the structure and investment are still under discussion. Nornickel declined to comment. Chinalco and China Copper did not respond to requests for comment via email and phone. Sites being considered in China include Fangchenggang and Qinzhou in the Guangxi region, the two sources said, with another source saying Qingdao in Shandong province was also possible. A decision on a joint venture will be made over the next few months, a fifth source said, adding that Nornickel's Chinese output is likely to be consumed domestically. The new facility will have capacity to produce 450,000 tonnes of copper annually, two of the sources said, amounting to around 2% of global mined supplies estimated at around 22 million metric tons this year. Nornickel, which according to its annual report produced 425,400 tonnes of refined copper last year, processed all of its concentrates in 2023 at the Arctic plant, its only operation producing finished copper suitable for delivery to exchanges.

July 8 (Reuters) - Microsoft (MSFT.O), opens new tab intends to offer Apple's (AAPL.O), opens new tab iOS-based devices to its employees in China to access authentication apps, a company spokesperson said on Monday, citing absence of Google's (GOOGL.O), opens new tab Android services in the country. Microsoft has been under increased scrutiny after a series of security breaches, the latest being that of Russian hackers who spied and accessed emails of the company's employees and customers earlier this year. The development was first reported by Bloomberg News, which, citing an internal memo, said the Windows OS-maker instructed its employees in China to use Apple devices at workplace from September. As a part of Microsoft's global Secure Future Initiative, the move to switch to iOS-devices stems from the lack of availability of Google Play Store in China that limits its employees' access to security apps such as Microsoft Authenticator and Identity Pass, the report added. "Due to the lack of availability of Google Mobile Services in this region, we look to offer employees a means of accessing these required apps, such as an iOS device," a company spokesperson told Reuters in an email. Microsoft is among those U.S. companies that have a strong presence in China. It entered the Chinese market in 1992 and also operates a large research and development center in the country. The company will provide iPhone 15 models to employees, currently using Android handsets across China, including Hong Kong, the Bloomberg report said.