link1s.site

The largest password leak in history exposes nearly 10 billion credentials

The largest collection of stolen passwords ever has been leaked to a notorious crime marketplace, according to cybersecurity researchers at Cybernews.

This leak, dubbed RockYou2024 by its original poster “ObamaCare,” holds a file containing nearly 10 billion unique plaintext passwords.

Allegedly gathered from a series of data breaches and hacks accumulated over several years, the passwords were posted on July 4th and hailed as the most extensive collection of stolen and leaked credentials ever seen on the forum.

“In its essence, the RockYou2024 leak is a compilation of real-world passwords used by individuals all over the world,” the researchers told Cybernews. “Revealing that many passwords for threat actors substantially heightens the risk of credential stuffing attacks.”

Credential stuffing attacks are among the most common methods criminals, ransomware affiliates, and state-sponsored hackers use to access services and systems.

Threat actors could exploit the RockYou2024 password collection to conduct brute-force attacks against any unprotected system and “gain unauthorized access to various online accounts used by individuals whose passwords are included in the dataset,” the research team said.

This could affect online services, cameras and hardware

This could affect various targets, from online services to internet-facing cameras and industrial hardware.

“Moreover, combined with other leaked databases on hacker forums and marketplaces, which, for example, contain user email addresses and other credentials, RockYou2024 can contribute to a cascade of data breaches, financial frauds, and identity thefts,” the team concluded.

However, despite the seriousness of the data leak, it is important to note that RockYou2024 is primarily a compilation of previous password leaks, estimated to contain entries from a total of 4,000 massive databases of stolen credentials, covering at least two decades.

This new file notably includes an earlier credentials database known as RockYou2021, which featured 8.4 billion passwords. RockYou2024 added approximately 1.5 billion passwords to the collection, spanning from 2021 through 2024, which, though a massive figure, is only a fraction of the reported 9,948,575,739 passwords in the leak.

Thus, users who have changed their passwords since 2021 may not have to panic about a potential breach of their information.

That said, the research team at Cybernews stressed the importance of maintaining data security. In response to the leak, they recommend immediately changing the passwords for any accounts associated with the leaked credentials, ensuring each password is strong and unique and not reused across different platforms.

Additionally, they advised enabling multi-factor authentication (MFA), which requires an extra form of verification beyond the password, wherever possible, to strengthen cyber security.

Lastly, tech users should utilize password manager software, which securely generates and stores complex passwords, mitigating the risk of password reuse across multiple accounts.

Microsoft to offer Apple devices to employees in China, cites absence of Android services
July 8 (Reuters) - Microsoft (MSFT.O), opens new tab intends to offer Apple's (AAPL.O), opens new tab iOS-based devices to its employees in China to access authentication apps, a company spokesperson said on Monday, citing absence of Google's (GOOGL.O), opens new tab Android services in the country. Microsoft has been under increased scrutiny after a series of security breaches, the latest being that of Russian hackers who spied and accessed emails of the company's employees and customers earlier this year. The development was first reported by Bloomberg News, which, citing an internal memo, said the Windows OS-maker instructed its employees in China to use Apple devices at workplace from September. As a part of Microsoft's global Secure Future Initiative, the move to switch to iOS-devices stems from the lack of availability of Google Play Store in China that limits its employees' access to security apps such as Microsoft Authenticator and Identity Pass, the report added. "Due to the lack of availability of Google Mobile Services in this region, we look to offer employees a means of accessing these required apps, such as an iOS device," a company spokesperson told Reuters in an email. Microsoft is among those U.S. companies that have a strong presence in China. It entered the Chinese market in 1992 and also operates a large research and development center in the country. The company will provide iPhone 15 models to employees, currently using Android handsets across China, including Hong Kong, the Bloomberg report said.
Morning Bid: Eyes switch to inflation vs elections, Powell up
A look at the day ahead in U.S. and global markets from Mike Dolan After an intense month focused on election risk around the world, markets quickly switched back to the more prosaic matter of the cost of money - and whether disinflation is resuming to the extent it allows borrowing costs to finally fall. Thursday's U.S. consumer price update for June is the key moment of the week for many investors - with the headline rate expected to have fallen two tenths of a percentage point to 3.1% but with 'core' rates still stuck at 3.4%. With Federal Reserve chair Jerome Powell starting his two-pronged semi-annual congressional testimony later on Tuesday, the consensus CPI forecast probably reflects what the central bank thinks of the situation right now - encouraging but not there yet. But as the U.S. unemployment rate is now back above 4.0% for the first time since late 2021, markets may look for a more nuanced approach from the Fed chair that sees it increasingly wary of a sudden weakening of the labor market as real time quarterly GDP estimates ebb again to about 1.5%. There were some other reasons for Fed optimism in the lead up to the testimony. The path U.S. inflation is expected to follow over coming years generally softened in June, amid retreating projections of price increases for a wide array of consumer goods and services, a New York Fed survey showed on Monday. Inflation a year from now was seen at 3% as of June - down from the expected rise of 3.2% in May - and five-year expectations fell to 2.8% from 3%. Crude oil prices are better behaved this week, too, falling more than 3% from the 10-week highs hit late last week and halving the annual oil price gain to 10%. The losses on Tuesday came after a hurricane that hit a key U.S. oil-producing hub in Texas caused less damage than many in markets had expected - easing concerns over supply disruption. Before Powell starts speaking later, there will also be an update on U.S. small business confidence for last month.
How the iPhone 16 With AI Could Send Apple's Market Value to $4T
Apple could be on track to reach a $4 trillion market capitalization with the artificial intelligence (AI) iPhone 16 upgrade cycle coming, Wedbush analysts said. The analysts said the iPhone 16 supercharged with AI could bring a "golden upgrade cycle" for Apple. Apple's recently announced iOS 18 with Apple Intelligence and OpenAI partnership are also expected to create monetization opportunities and increase share value. Apple (AAPL) could be on the path to a $4 trillion market capitalization as an iPhone upgrade cycle approaches, driven by the iPhone 16 supercharged with artificial intelligence (AI) capabilities, according to Wedbush analysts. 1 Apple's recently announced iOS 18 with Apple Intelligence and OpenAI partnership are also expected to create monetization opportunities and increase share value. AI iPhone 16 Upgrade Cycle Coming Soon Wedbush analyst said that an AI iPhone 16 could bring "a golden upgrade cycle for Cupertino looking ahead with pent-up demand building globally." "The Street is now starting to slowly recognize that with Apple Intelligence on the doorstep in essence Cupertino will be the gatekeepers of the consumer AI Revolution," they said, with 2.2 billion iOS devices globally and 1.5 billion iPhones. Wedbush suggested a "consumer AI tidal wave" could start with the iPhone 16 in mid-September, adding that estimates indicate 270 million iPhones users have not upgraded in over four years. Recovery in China To Support Upgrade Cycle The analysts indicated that iPhone supply stabilization in Asia is also "a very good sign heading into a monumental iPhone 16 upgrade cycle." Wedbush's projections come amid ongoing concerns for the iPhone maker in the China region amid increased competition, though there have been recent signs of improving shipments. They projected that June "will be the last negative growth quarter for China with a growth turnaround beginning in the September quarter," when the iPhone 16 is expected to be released. AI and iOS 18 Could Also Boost Share Value Apple unveiled iOS 18 supercharged by Apple Intelligence and an AI partnership with OpenAI at its developers' conference in June. Wedbush analysts said the partnership with the Chat-GPT maker "creates the highway for developers around the globe to focus on iOS 18 and this in turn will create a myriad of monetization opportunities for Cook & Co. over the coming years." The analysts estimated that "this could result in incremental Services high margin growth annually of $10 billion for Apple" driven by hardware and software. They added they believe "AI technology being introduced into the Apple ecosystem will bring monetization opportunities on both the services as well as iPhone/hardware front and adds $30 to $40 per share." Apple shares were little changed in early trading Monday, though they have gained more than 17% since the start of the year. Do you have a news tip for Investopedia reporters? Please email us at tips@investopedia.com SPONSORED Trade on the Go. Anywhere, Anytime One of the world's largest crypto-asset exchanges is ready for you. Enjoy competitive fees and dedicated customer support while trading securely. You'll also have access to Binance tools that make it easier than ever to view your trade history, manage auto-investments, view price charts, and make conversions with zero fees. Make an account for free and join millions of traders and investors on the global crypto market.
Workers warn of additional walkouts unless demands are met
Members of the National Samsung Electronics Union stage a rally near the company's Hwaseong Campus in Gyeonggi Province, Monday, beginning a three-day strike. Korea Times photo by Shim Hyun-chul By Nam Hyun-woo The biggest labor union at Samsung Electronics initiated a three-day strike on Monday, threatening to disrupt the company's chip manufacturing lines unless management agrees to a wage hike and higher incentives. This marks the first strike by unionized workers in the tech giant's 55-year history. The National Samsung Electronics Union (NSEU) claimed that about 4,000 unionized workers from Samsung's plants nationwide participated in a rally at the company's Hwaseong Campus in Gyeonggi Province. Police estimated that approximately 3,000 union members were present at the rally. According to its own survey, the union reported that a total of 6,540 members expressed their intention to participate in the strike. They emphasized that disruptions in manufacturing are anticipated, with over 5,000 members from facility, manufacturing, and development divisions joining the strike. The comments seem to address market expectations that the walkout is unlikely to cause significant disruptions in the chipmaker's operations, largely because most manufacturing lines are automated. The union said that it may launch another strike for an undetermined period, unless management responds to the union’s demand. Since January, the union has been pressing management for a higher wage increase rate for all members, fulfillment of promises regarding paid leave, and improvements to incentive criteria. With negotiations at an impasse, the union announced on May 29 that it would launch a strike. The NSEU has some 30,000 members, accounting for 24 percent of all Samsung employees. Among the union members, about 80 percent work at the device solutions division, which manufactures semiconductors.
Koenigsegg Fused Three Hypercars Into One To Make The Chimera
Koenigsegg Agera RS Chimera combines technologies from Agera RS, CC850, and Jesko. An Agera RS platform features the engine from the Jesko and the simulated manual gearbox from the CC850. Development took three years, thanks to software and hardware integration challenges. A "chimera," for the uninitiated, is described as a mythical creature whose anatomy comes from multiple animals, creating a hybrid of two or more creatures' best bits. It's also the name of the latest one-off creation from Koenigsegg, and it's certainly apt; the Koenigsegg Agera RS Chimera is an amalgam of technologies from the decade-old, record-breaking Agera RS, the fascinatingly innovative CC850, and the awe-inspiring Jesko - which just recently set four new acceleration records. There's also a hint of Regera in here, which had some impressive records of its own. As reported by Mr. JWW, the strictly one-off special edition was commissioned by FIA President Mohammed Ben Sulayem, and both he and one of Koenigsegg's engineers arrived at the same name. Let's take a closer look and see exactly why this is a hybrid, even though it's not electrified. Three Cars In One The Chimera was originally a regular Agera RS and one of several Koenigsegg megacars owned by Ben Sulayem, but he asked Christian and the team to initiate a special project on his behalf. Around the same time, the extraordinary Koenigsegg CC850 was revealed at Monterey Car Week 2022, introducing the innovative Engage Shift System (ESS). This was based on the already astonishingly fast nine-speed Light Speed Transmission, with new actuators and sensors added to enable the simulation of a manual transmission without a physical link between the shifter and the gearbox. Like the rest of the world, the FIA boss was enamored by this novel technology, and as a wealthy 'Egg collector, he asked for it to be put into his special Agera-based project. Christian pondered this and ultimately decided to fulfill the request, in the process turning Ben Sulayem's special edition into something of a development mule for the ESS. But unlike the CC850, the Chimera got the larger turbos of the Jesko, enabling around 1,280 horsepower on regular gas and up to 1,600 hp on E85. That means this is an Agera RS with a CC850 transmission and a Jesko engine. On paper, that sounds simple, but the reality was anything but... Three Shifting Experiences Took Three Years To Combine According to a video from YouTuber and Koenigsegg distributor Mr. JWW, this development process took three years and required the relocation of the battery, new mounts for the powertrain, new harnesses, new software and controllers, and even a new infotainment system. To ensure all the electronics worked seamlessly was a challenge, but then Ben Sulayem asked for another layer of intricacy, requesting that paddle shifters be added, like in the Jesko Absolut and Jesko Attack. In the CC850, you could only switch between the simulated manual mode and fully automatic shifts, but now, the Chimera's development has unlocked manually operable paddles, which have now been added as the only option you can add to a CC850. There was also significant relocation and redesigning of suspension components, with parts from the Jesko and the Regera forming the subframe and elements of the suspension, respectively. A new scoop for the new transmission's cooler was also added, but it looks like it was always planned. Christian von Koenigsegg says this is a true one-off, saying that it would be cheaper and easier to start something all-new from scratch than to mix new and old technologies again, and that it's simply "too much work" to tackle a retrofit project. The Chimera is not completed just yet, as there are still subtle elements to refine, such as the bite point of the clutch pedal, but these minor issues will surely be resolved soon. It's an amazing feat, combining three hypercars in one, and we can't even fathom how Koenigsegg will top this in the future, but we don't doubt that Christian and his team will continue to do just that.