link1s.site

The largest password leak in history exposes nearly 10 billion credentials

The largest collection of stolen passwords ever has been leaked to a notorious crime marketplace, according to cybersecurity researchers at Cybernews.

This leak, dubbed RockYou2024 by its original poster “ObamaCare,” holds a file containing nearly 10 billion unique plaintext passwords.

Allegedly gathered from a series of data breaches and hacks accumulated over several years, the passwords were posted on July 4th and hailed as the most extensive collection of stolen and leaked credentials ever seen on the forum.

“In its essence, the RockYou2024 leak is a compilation of real-world passwords used by individuals all over the world,” the researchers told Cybernews. “Revealing that many passwords for threat actors substantially heightens the risk of credential stuffing attacks.”

Credential stuffing attacks are among the most common methods criminals, ransomware affiliates, and state-sponsored hackers use to access services and systems.

Threat actors could exploit the RockYou2024 password collection to conduct brute-force attacks against any unprotected system and “gain unauthorized access to various online accounts used by individuals whose passwords are included in the dataset,” the research team said.

This could affect online services, cameras and hardware

This could affect various targets, from online services to internet-facing cameras and industrial hardware.

“Moreover, combined with other leaked databases on hacker forums and marketplaces, which, for example, contain user email addresses and other credentials, RockYou2024 can contribute to a cascade of data breaches, financial frauds, and identity thefts,” the team concluded.

However, despite the seriousness of the data leak, it is important to note that RockYou2024 is primarily a compilation of previous password leaks, estimated to contain entries from a total of 4,000 massive databases of stolen credentials, covering at least two decades.

This new file notably includes an earlier credentials database known as RockYou2021, which featured 8.4 billion passwords. RockYou2024 added approximately 1.5 billion passwords to the collection, spanning from 2021 through 2024, which, though a massive figure, is only a fraction of the reported 9,948,575,739 passwords in the leak.

Thus, users who have changed their passwords since 2021 may not have to panic about a potential breach of their information.

That said, the research team at Cybernews stressed the importance of maintaining data security. In response to the leak, they recommend immediately changing the passwords for any accounts associated with the leaked credentials, ensuring each password is strong and unique and not reused across different platforms.

Additionally, they advised enabling multi-factor authentication (MFA), which requires an extra form of verification beyond the password, wherever possible, to strengthen cyber security.

Lastly, tech users should utilize password manager software, which securely generates and stores complex passwords, mitigating the risk of password reuse across multiple accounts.

Autonomous driving is not so hot
From the perspective of the two major markets of the United States and China, the autonomous driving industry has fallen into a low tide in recent years. For example, last year, Cruise Origin, one of the twin stars of Silicon Valley autonomous driving companies and once valued at more than $30 billion, failed completely, its Robotaxi (driverless taxi) operation qualification was revoked, and autonomous driving models have been discontinued. However, as a new track with the deep integration of digital economy and real economy, automatic driving is a must answer: on the one hand, automatic driving will accelerate the process of technology commercialization and industrialization, and become an important part of the game of major powers; On the other hand, autonomous driving will also promote industrial transformation and upgrading by improving the mass travel service experience, seeking new engines for urban development, and injecting new vitality into the urban economy.
MOFCOM refutes EU comments on anti-subsidy investigation into Chinese EVs
A spokesperson for the Ministry of Commerce (MOFCOM) on Monday rejected remarks from the EU Ambassador to China on the anti-subsidy investigation into Chinese electric vehicles (EVs). MOFCOM said China had expressed strong opposition through various channels since October 2023 and has always advocated for handling economic and trade frictions through dialogue and consultation in order to maintain the overall strategic partnership between China and Europe. EU Ambassador to China Jorge Toledo claimed on Sunday that the EU has been trying to engage with China for months regarding the imposition of tariffs on Chinese EVs but that China had only recently sought to initiate discussions. This is false, the spokesperson said. MOFCOM said that after the European Commission (EC) officially filed a case, Chinese Commerce Minister Wang Wentao sent a letter to European Commission Executive Vice-President Valdis Dombrovskis on October 24, 2023, expressing hope to resolve the case through dialogue and negotiation. On November 13, 2023, Wang sent another letter to the European side proposing negotiation suggestions. In February 2024, Wang met with Dombrovskis during the WTO's 13th Ministerial Conference face to face and proposed dialogue and negotiation with the European side. On May 19, 2024, Wang reiterated the hope for dialogue and negotiation to resolve the case in a letter to the European side. Additionally, Chinese technical experts have been sending signals to the European side regarding on-site inspections, hearings, and other channels since the case was filed, expressing willingness to resolve trade frictions through dialogue and negotiation. On the day the preliminary ruling was announced on June 12, Dombrovskis replied to Wang in a letter, expressing the desire for both sides to strengthen dialogue to resolve the case. On June 22, Wang held a video conference with Dombrovskis, and they agreed to start negotiations on the EU's anti-subsidy investigation into Chinese EVs. Subsequently, China sent a working group to Europe for negotiations on June 23, and multiple rounds of technical consultations were held simultaneously via video. MOFCOM said that China has shown the utmost sincerity and hopes that the European side will meet China halfway, show sincerity, and push forward the negotiation process to reach a mutually acceptable solution as soon as possible. China has always believed that trade protectionist measures are not conducive to the development of global green industries and automotive industry cooperation. Efforts should be made to adhere to dialogue and cooperation to promote economic green transformation, rather than creating divisions and disrupting global industrial and supply chains, MOFCOM said. China firmly opposes any unilateralism and protectionism that politicizes and weaponizes economic and trade issues, and will take all necessary measures to defend its own interests against any abuse of rules and suppression of China, MOFCOM added.
Apple's low-end Apple Watch uses a plastic case
Apple is giving the Apple Watch a major update for its 10th anniversary. The watch's display will be larger, and the entire device will be thinner and lighter. Both the Apple Watch Series 10 and the new Apple Watch Ultra 3 will be equipped with new chips, which may be paving the way for future Apple AI capabilities. According to sources, the Apple Watch health detection function has encountered some technical obstacles in the upgrade process, the blood pressure measurement function or can only realistically display fluctuations and cannot display values, and the sleep apnea detection and other functions can not appear on the new product. The shell material of Apple Watch SE series products may be replaced by hard plastic from aluminum shell. The plastic-clad Apple Watch may be sold at a lower price to compete with Samsung's cheapest Watch, the Galaxy Watch FE. In addition, Siri's new features may be delayed, and AirPods with cameras may arrive in 2026.
World's deepest diving pool opens in Poland, 45.5 meters deep
The world's deepest diving pool, Deepspot, opened this weekend near the Polish capital Warsaw. The 45.5-meter pool contains artificial underwater caves, Mayan ruins and a small shipwreck for scuba divers and free divers to explore. Deepspot can hold 8,000 cubic meters of water, more than 20 times the capacity of a normal 25-meter swimming pool. Unlike ordinary swimming pools, Deepspot can still open despite Poland's COVID-19 epidemic prevention restrictions because it is a training center that provides courses. The operator also plans to open a hotel where guests can observe divers at a depth of 5 meters from their rooms. "This is the deepest diving pool in the world," Michael Braszczynski, 47, Deepspot's director and a diving enthusiast, told AFP at the opening yesterday. The current Guinness World Record holder is a 42-meter-deep pool in Montegrotto Terme, Italy. The 50-meter-deep Blue Abyss pool in the UK is scheduled to open in 2021. On the first day of Deepspot's opening, about a dozen people visited, including eight experienced divers who wanted to pass the instructor exam. "There are no spectacular fish or coral reefs here, so it can't replace the ocean, but it is certainly a good place to learn and train safe open water diving," said 39-year-old diving instructor Przemyslaw Kacprzak. "And it's fun! It's like a kindergarten for divers."
EV maker Lucid to recall over 5,200 Air luxury sedans for software error, US regulator says
July 9 (Reuters) - Lucid Group (LCID.O), opens new tab will recall about 5,251 of its 2022-2023 Air luxury sedans due to a software error that could cause a loss of power, according to a notice from the U.S. National Highway Traffic Safety Administration published on Tuesday. The regulator added the EV maker will also recall about 7,506 of its 2022-2024 Air luxury sedans due to an issue with a coolant heater that could fail to defrost the windshield. Lucid had released an over-the-air software update in June as a fix for the software error and a separate update to identify a high voltage coolant heater failure and provide a warning to the drivers of the affected vehicles. The company had reported second-quarter deliveries above market expectations on Monday, as price cuts helped boost demand for its luxury electric sedans.
About UsPrivacy PolicyTerms of Use
Copyright 2020 - 2024
www.link1s.site