RockYou2024: Massive Data Breach Exposes Nearly 10 Billion Passwords

by | Jul 9, 2024 | News

RockYou2024: Massive Data Breach Exposes Nearly 10 Billion Passwords

Post Views: 1,459




Join our Patreon Channel and Gain access to 70+ Exclusive Walkthrough Videos.

Patreon
Reading Time: 3 Minutes

Cybernews researchers have uncovered the largest password compilation ever leaked, known as RockYou2024. This massive compilation, containing 9,948,575,739 unique plaintext passwords, was posted on a popular hacking forum by a user with the handle “ObamaCare” on July 4th.

RockYou2024 Source CyberNewsRockYou2024 announcement: Source CyberNews

Details of the Compilation

The RockYou2024 compilation, named in reference to the infamous RockYou data breach of 2009, includes passwords from both old and new data breaches. The leak represents a significant increase from the previous RockYou2021 collection, which had 8.4 billion entries. The RockYou2021 collection itself was a combination of passwords from various historical data leaks and breaches.

Cybernews researchers have highlighted the severe risks posed by such a massive compilation of passwords. The availability of nearly 10 billion real-world passwords substantially heightens the risk of credential stuffing attacks, where threat actors use these leaked passwords to gain unauthorized access to user accounts across multiple platforms.

See Also: So, you want to be a hacker?
Offensive Security, Bug Bounty Courses




Discover your weakest link. Be proactive, not reactive. Cybercriminals need just one flaw to strike.

Origins and Expansion of the Data

The original RockYou data breach in 2009 exposed over 32 million user passwords stored in plaintext from a social app website. Over the years, this dataset has expanded significantly. From 2021 to 2024, attackers increased the dataset by 15%, adding 1.5 billion passwords from various internet data leaks. The latest RockYou2024 compilation likely includes data from over 4,000 databases collected over more than two decades.

Trending: The Importance of Expertise: Why Manual Pentesting Beats Automated Solutions




Trending: Digital Forensics Tool: MalStatWare

Impact and Mitigation Efforts

The RockYou2024 leak has significant implications for cybersecurity. With nearly 10 billion passwords exposed, users are at a heightened risk of account compromises. To help mitigate this risk, Cybernews has announced plans to integrate data from RockYou2024 into their Leaked Password Checker. This tool will allow users to check if their credentials have been exposed in the leak.

Trending: New OpenSSH Vulnerability “regreSSHion” Enables Root Privileges on Linux Systems

Are u a security researcher? Or a company that writes articles about Cyber Security, Offensive Security (related to information security in general) that match with our specific audience and is worth sharing? If you want to express your idea in an article contact us here for a quote: [email protected]

Source: securityaffairs.com

Source Link

Merch

Recent News

EXPLORE OUR STORE

Offensive Security & Ethical Hacking Course

Begin the learning curve of hacking now!

Information Security Solutions

Find out how Pentesting Services can help you.

Join our Community

Share This