link1s.site

The largest password leak in history exposes nearly 10 billion credentials

The largest collection of stolen passwords ever has been leaked to a notorious crime marketplace, according to cybersecurity researchers at Cybernews.

This leak, dubbed RockYou2024 by its original poster “ObamaCare,” holds a file containing nearly 10 billion unique plaintext passwords.

Allegedly gathered from a series of data breaches and hacks accumulated over several years, the passwords were posted on July 4th and hailed as the most extensive collection of stolen and leaked credentials ever seen on the forum.

“In its essence, the RockYou2024 leak is a compilation of real-world passwords used by individuals all over the world,” the researchers told Cybernews. “Revealing that many passwords for threat actors substantially heightens the risk of credential stuffing attacks.”

Credential stuffing attacks are among the most common methods criminals, ransomware affiliates, and state-sponsored hackers use to access services and systems.

Threat actors could exploit the RockYou2024 password collection to conduct brute-force attacks against any unprotected system and “gain unauthorized access to various online accounts used by individuals whose passwords are included in the dataset,” the research team said.

This could affect online services, cameras and hardware

This could affect various targets, from online services to internet-facing cameras and industrial hardware.

“Moreover, combined with other leaked databases on hacker forums and marketplaces, which, for example, contain user email addresses and other credentials, RockYou2024 can contribute to a cascade of data breaches, financial frauds, and identity thefts,” the team concluded.

However, despite the seriousness of the data leak, it is important to note that RockYou2024 is primarily a compilation of previous password leaks, estimated to contain entries from a total of 4,000 massive databases of stolen credentials, covering at least two decades.

This new file notably includes an earlier credentials database known as RockYou2021, which featured 8.4 billion passwords. RockYou2024 added approximately 1.5 billion passwords to the collection, spanning from 2021 through 2024, which, though a massive figure, is only a fraction of the reported 9,948,575,739 passwords in the leak.

Thus, users who have changed their passwords since 2021 may not have to panic about a potential breach of their information.

That said, the research team at Cybernews stressed the importance of maintaining data security. In response to the leak, they recommend immediately changing the passwords for any accounts associated with the leaked credentials, ensuring each password is strong and unique and not reused across different platforms.

Additionally, they advised enabling multi-factor authentication (MFA), which requires an extra form of verification beyond the password, wherever possible, to strengthen cyber security.

Lastly, tech users should utilize password manager software, which securely generates and stores complex passwords, mitigating the risk of password reuse across multiple accounts.

The US and Australia will work to improve financial links in the Pacific region to counter China's influence
U.S. and Australian officials said on Monday (July 8) that both countries are committed to improving financial connectivity in the Pacific and strengthening banking services in the region to resist China's growing covetousness. According to Reuters, at the two-day Pacific Banking Forum co-hosted by the United States and Australia, Australian Assistant Treasurer Stephen Jones said that Canberra hopes to be the partner of choice in the Pacific region, both in banking and defense. "If there are countries acting in this region whose main goal is to promote their own national interests rather than the interests of Pacific island countries, we will be very concerned," Jones said at the first day of the forum in Brisbane. He made this comment when asked about Chinese banks filling the vacuum in the Pacific region. The report said that as some Western banks have interrupted their long-standing business relationships with banks in small Pacific island countries, while others are preparing to close their businesses, these Pacific island countries face many challenges and their ability to obtain US dollar-dominated banking business is limited. The report said that experts said that Western banks are taking de-risking actions to meet financial regulations, which makes it more difficult to do business in Pacific island countries. This in turn weakens the financial resilience of these island nations. At the same time, Washington is also stepping up efforts to support Pacific island nations in limiting China's influence. Brian Nelson, U.S. Treasury Undersecretary for Counterterrorism and Financial Intelligence, said, "We recognize the economic and strategic importance of the Pacific region, and we are committed to deepening engagement and cooperation with our allies and partners to enhance financial connectivity, investment and integration." The report said that neither the United States nor Australia has yet announced detailed plans at the forum, but comments from officials from both countries reflect the growing unease among Western countries that have traditionally had influence in the Pacific region about China's growing influence in the region.
Amid rising regional tensions, the US announced that it will hold another Rim of the Pacific military exercise
The U.S. Navy's Pacific Fleet announced on Wednesday (May 22) that the 2024 Rim of the Pacific Exercise (RIMPAC 2024) is expected to take place on June 26, with 29 countries participating in and around the Hawaiian Islands, a larger lineup than the previous exercise in 2022. The Philippines, which has had multiple maritime conflicts with China recently, and Japan, which has tense diplomatic relations with China, will send troops to participate. China has been excluded from participating in the international military exercise since 2018, and its aggressive actions and reactions are causing tensions in the Pacific region to continue to rise. The biennial Rim of the Pacific military exercise is the world's largest international maritime exercise. The U.S. Navy said that the exercise will last until August 2, and it is expected to involve 29 countries, 40 surface ships, 3 submarines, 14 countries' army forces, more than 150 aircraft and more than 25,000 personnel. The U.S. Navy said that the theme of the 29th RIMPAC 2024 is "Partners: Integrated and Ready", emphasizing inclusiveness as the core, promoting multinational cooperation and trust, and using military interoperability to achieve their respective national goals to strengthen integrated and ready alliance partners. Its goal is to "enhance collective strength and promote a free and open Indo-Pacific region" through joint training and operations. The 29 countries participating in the exercise this year include Australia, Belgium, Brazil, Brunei, Canada, Chile, Colombia, Denmark, Ecuador, France, Germany, India, Indonesia, Israel, Italy, Japan, Malaysia, Mexico, the Netherlands, New Zealand, Peru, South Korea, the Philippines, Singapore, Sri Lanka, Thailand, Tonga, the United Kingdom and the United States. Compared with the 28th RIMPAC held in 2022, which involved 26 countries, 38 surface ships, 4 submarines, 9 countries' army forces, more than 170 aircraft, and about 25,000 officers and soldiers, the number of countries, ships and army forces participating in this exercise has increased. The countries participating in this year's RIMPAC military exercise include all members of the Quadrilateral Security Dialogue (QUAD) between the United States, Japan, India and Australia, and the Australia-UK-US Trilateral Security Partnership (AUKUS), as in the previous exercise. In addition, countries surrounding the South China Sea and the South Pacific island nation of Tonga are also participating. Many analysts believe that the military exercise itself is sending a message to China: China's expansion in the Western Pacific region will be blocked and defeated. The United States invited China to participate in the RIMPAC military exercise twice in 2014 and 2016. In 2018, due to China's expansion in the South China Sea, the United States withdrew its invitation to China. In addition, despite Taiwan's repeated willingness to participate, Taiwan is still not included in the 29 countries participating in this year's RIMPAC military exercise. Analysts pointed out that the US-led RIMPAC military exercise is intended to unite allies to militarily intimidate China. If Taiwan is invited to join, it will be too provocative to China, which will not only aggravate the tension between the United States and China, but also embarrass some allies. The U.S. Navy said the commander of the U.S. Third Fleet will serve as the commander of the joint task force for the exercise, while Chilean Navy Commodore Alberto Guerrero will serve as deputy commander of the joint task force, which is a first in the history of the RIMPAC military exercise. In addition, Japan Maritime Self-Defense Force Rear Admiral Kazushi Yokota will also serve as deputy commander. Other key leaders of the multinational force exercise include Canadian Commodore Kristjan Monaghan, who will command the maritime forces, and Australian Air Force Commodore Louise Desjardins, who will command the air forces. According to the U.S. Stars and Stripes, Vice Admiral Michael Boyle is currently the commander of the U.S. Third Fleet. Vice Admiral John Wade has been nominated to replace Boyle. The U.S. Navy press release said the exercise will enhance the ability of international joint forces to "deter and defeat aggression by major powers in all domains and conflict levels," but did not provide specific information on which exercises will be held this summer. Previous RIMPAC training exercises have included sinking ships at sea with missiles, amphibious landings and the first landing of a Marine Corps Osprey aircraft on an Australian ship.
Gold, silver caught in downdraft of broad commodity market sell off
(Kitco News) - Gold and silver prices are sharply lower in midday U.S. trading Monday, on heavy profit-taking from the shorter-term futures traders after recent good price advances. The selling pressure today across most of the raw commodity spectrum is also keeping the precious metals bulls on the sidelines to start the trading week. August gold was last down $37.50 at $2,360.10. September silver was down $0.849 at $30.85. U.S. stock indexes mixed but near their record highs scored last week. The rallying stock market is a bearish element for the gold and silver markets, from a competing asset class perspective. The key U.S. data points of the week include Fed Chairman Powell’s speeches to the U.S. Congress on Tuesday and Wednesday, and the consumer and producer price indexes on Thursday and Friday, respectively. The key outside markets today see the U.S. dollar index slightly higher. Nymex crude oil prices are lower and trading around $82.25 a barrel. The benchmark 10-year U.S. Treasury note yield is presently 4.288%. Technically, August gold bulls have the overall near-term technical advantage. Bulls’ next upside price objective is to produce a close above solid resistance at the June high of $2,406.70. Bears' next near-term downside price objective is pushing futures prices below solid technical support at $2,300.00. First resistance is seen at $2,382.60 and then at $2,400070. First support is seen at $2,350.00 and then at last week’s low of $2,327.40. Wyckoff's Market Rating: 6.0. September silver futures bulls have the overall near-term technical advantage. Silver bulls' next upside price objective is closing prices above solid technical resistance at the May high of $33.05. The next downside price objective for the bears is closing prices below solid support at the June low of $28.90. First resistance is seen at $31.00 and then at $31.50. Next support is seen at Friday’s low of $30.45 and then at $30.00. Wyckoff's Market Rating: 6.5. (Hey! My “Markets Front Burner” weekly email report is my best writing and analysis, I think, because I get to look ahead at the marketplace and do some market price forecasting. Plus, I’ll throw in an educational feature to move you up the ladder of trading/investing success. And it’s free! Email me at jim@jimwyckoff.com and I’ll add your email address to my Front Burner list.)
China proposes to establish BCI committee to strive for domestic innovation
China is mulling over establishing a Brain-Computer Interface (BCI) standardization technical committee under its Ministry of Industry and Information Technology (MIIT), aiming to guide enterprises to enhance industrial standards and boost domestic innovation. The proposed committee, revealed by the MIIT on Monday, will work on composing a BCI standards roadmap for the entire industry development as well as the standards for the research and development of the key technologies involved, according to the MIIT. China has taken strides in developing the BCI industry over the years, not only providing abundant policy support but also generous financial investment, Li Wenyu, secretary of the Brain-Computer Interface Industrial Alliance, told the Global Times. From last year to 2024, both the central and local governments have successively issued relevant policies to support industrial development. The MIIT in 2023 rolled out a plan selecting and promoting a group of units with strong innovation capabilities to break through landmark technological products and accelerate the application of new technologies and products. The Beijing local government also released an action plan to accelerate the industry in the capital (2024-2030) this year. In 2023, there were no fewer than 20 publicly disclosed financing events for BCI companies in China, with a total disclosed amount exceeding 150 million yuan ($20.6 million), Li said. “The strong support from the government has injected momentum into industrial innovation.” The fact that China's BCI industry started later than Western countries such as the US is a reality, leading to the gap in China regarding technological breakthroughs, industrial synergy, and talent development, according to Li. To further close gaps and solve bottlenecks in BCI industrial development, Li suggested that the industry explore various technological approaches to suit different application scenarios and encourage more medical facilities powered by BCI to initiate clinical trials by optimizing the development of BCI-related ethics. Additionally, he highlighted that standard development is one of the aspects to enhance the overall level and competitiveness of the industry chain, which could, in turn, empower domestic BCI innovation. While China's BCI technology generally lags behind leading countries like the US in terms of system integration and clinical application, this has not hindered the release of Neucyber, which stands as China's first "high-performance invasive BCI." Neucyber, an invasive implanted BCI technology, was independently developed by Chinese scientists from the Chinese Institute for Brain Research in Beijing. Li Yuan, Business Development Director of Beijing Xinzhida Neurotechnology, the company that co-developed this BCI system, told the Global Times that the breakthrough of Neucyber could not have been achieved without the efforts of the institute gathering superior resources from various teams in Beijing. A group of mature talents were gathered within the institute, from specific fields involving electrodes, chips, algorithms, software, and materials, Li Yuan said. Shrugging off the outside world's focus on China’s competition with the US in this regard, Li Yuan said her team doesn’t want to be imaginative and talk too much, but strives to produce a set of products step by step that can be useful in actual applications. In addition, Li Wenyu also attributed the emergence of Neucyber to the independent research atmosphere and the well-established talent nurturing mechanism in the Chinese Institute for Brain Research. He said that to advance China’s BCI industry, it is necessary not only to cultivate domestic talents but also to introduce foreign talents to enhance China's research and innovation capabilities. The proposed plan for establishing the BCI standardization technical committee under the MIIT will solicit public opinions until July 30, 2024.
UAE insurance sector continued to grow in Q4-23: CBUAE
The UAE insurance sector continued to grow in Q4-2023, as reflected by increase in the gross written premiums. As of year-end, the number of licensed insurance companies in the UAE remained at 60, according to the Central Bank of the UAE's (CBUAE) Quarterly Economic Review (Q4-2023). The insurance sector comprised 23 traditional national companies, 10 Takaful national and 27 foreign companies, while the number of insurance related professions remained at 491. The review on insurance sector structure and activity showed that the gross written premium increased by 12.7% Y-o-Y in Q4 2023 to AED 53.2 billion, mostly due to an increase in health insurance premiums by 16.5% Y-o-Y and an increase in property and liability insurance premiums by 18.9% Y-o-Y, while the insurance of persons and fund accumulation premiums decreased by 12.4% Y-o-Y, resulting primarily from decrease in individual life premiums. Gross paid claims of all types of insurance plans increased by 12.8% Y-o-Y to AED 31.1 billion at the end of 2023. This was mainly driven by the increase in claims paid in health insurance by 16.9% Y-o-Y and increase in paid claims in property and liability insurance by 10.9% Y-o-Y, partially offset by the decline in claims paid in insurance of persons and fund accumulation by 2.8% Y-o-Y. The total technical provisions of all types of insurance increased by 8.4% Y-o-Y to AED 74.4 billion in Q4 2023 compared to AED68.6 billion in Q4 2022. The volume of invested assets in the insurance sector amounted to AED 76 billion (60.4% of total assets) in Q4 2023 compared to AED 71.4 billion (59.4% of total assets) in Q4 2022. The retention ratio of written insurance premiums for all types of insurance was 52.9 % (AED 28.1 billion) in Q4 2023, compared to 54.9% (AED 25.9 billion) at the end of 2022. The UAE insurance sector remained well capitalized in terms of early warning ratios and risk assessment. Own funds to minimum capital requirement ratio increased to 335.7% in Q4 2023, compared to 309.3% at the end of 2022, due to an increase in own funds eligible to meet the minimum capital requirements. Also, own funds to solvency capital requirement ratio rose to 221% in Q4 2023 compared to 208.5% in Q4 2022, due to an increase in own funds eligible to meet solvency capital requirements. Finally, own funds to minimum guarantee fund ratio reached to 316.3% at the end of 2023 down from 314.6% a year earlier, due to higher eligible funds to meet minimum guarantee funds. In terms of profitability, the net total profit to net written premiums increased to 6.5% in Q4 2023, compared to 2.9% at the end of 2022. The return on average assets increased to 0.3% in Q4 2023 compared to the 0.1% at the of the previous year.