Russian Criminals Steal 1.2 Billion Passwords World-wide; Can Google Come to the Rescue?

Discussion in 'Android News' started by dgstorm, Aug 6, 2014.

  1. dgstorm
    Online

    dgstorm Editor in Chief Staff Member Premium Member

    Joined:
    Dec 30, 2010
    Messages:
    7,754
    Likes Received:
    1,699
    Trophy Points:
    258
    Location:
    Austin, TX
    Ratings:
    +1,728
    [​IMG]

    A report from this morning at CNN details another major cyberattack by criminals. This time, Russian criminals stole 1.2 Billion passwords from over 420,000 different websites.

    Alex Holden of Milwaukee-based Hold Security shared some of the details after his security company found the breach. Holden indicated that the sites range from smaller sites to "household names," although none of them were major email providers.

    He isn't sharing any details on which sites were breached just yet. Part of this is because of existing nondisclosure agreements. The other is that his company is contacting some of these sites first to minimize any additional exploits of their existing vulnerabilities.

    It looks like the average person on the web doesn't have too much to worry about with this new breach, although the volume of the theft is worrisome. Here's a quote with more of the details,

    This is just one in a long string of high profile data security breaches, with the most damaging one being the Target breach last year. It's easy to wonder what can be done about these criminal hackers. Luckily, our anemic global cyber-security law enforcement organizations are no longer the only ones trying to stem the tide from these mobsters.

    [​IMG]

    On July 15th of this year, Google decided it would do something about the problem. They initiated a new program to put the smack-down on illegal hackers. It's called Project Zero, and it is basically an arm of Google with a team of elite programers and cyber-security experts, who are tasked with stopping "the black-hats" and putting an end to their ability to hack in the first place.

    What's really amazing is that Google isn't just setting these "Cyber-Avengers" loose on the web to protect only Google's software and services. They will be working to close security holes in any software regardless of the company, including Microsoft, Apple, Adobe and others. They plan to alert each company when they find a vulnerability and will even step in and help develop a solution if it seems like the target is lagging in handling it themselves.

    Project Zero is Google's response to the "Zero Day" vulnerability which affected millions of users world-wide recently. In an interesting coincidence, the Google security researcher who they chose to share their project is named Chris Evans, which is the same name as the actor who plays Captain America in the Marvel movies.

    Here's a link to their full announcement regarding Project Zero: Google Security Blog
     
  2. Dusty
    Offline

    Dusty Premium Member Premium Member

    Joined:
    Jan 13, 2010
    Messages:
    912
    Likes Received:
    231
    Trophy Points:
    43
    Location:
    DC/NoVA
    Ratings:
    +245
    Current Phone Model:
    Nexus 6
    I personally believe that ID theft and stealing financial info with malicious intent should carry terms as harsh as violent crimes. It's bad enough that credit reporting agencies have zero liability while wielding the power to destroy lives.
     
    • Like Like x 2
  3. mountainbikermark
    Online

    mountainbikermark DF Super Moderator Staff Member Premium Member

    Joined:
    Sep 5, 2010
    Messages:
    3,697
    Likes Received:
    757
    Trophy Points:
    258
    Ratings:
    +774