Latest in Botnet

Image credit:

Two million accounts compromised by 'Pony' botnet, bad passwords

Share
Tweet
Share
Save

Sponsored Links

Though most of us cast stones at large-scale corporate password thefts, we ought to be checking our own glass houses, according to a security company called Trustwave. It just revealed that a single attack from a Dutch-based server has resulted in 2 million passwords pilfered from individual users for sites like Facebook and Google. The ne'er-do-well did it using a botnet and hacker program called "Pony," which likely directed the stolen info through a gateway or so-called reverse proxy. Thieves also gained access to an unusually high number of accounts from a single payroll service, which could cause "direct financial repercussions," according to the site. Lest you imagine that complex hacks were involved, though, think again. A commonly used cracking method was "guessing," thanks to poorly chosen passwords like "123456" used by -- wait for it -- 15,820 of the victims.

Via: PC World
Source: Trustwave
All products recommended by Engadget are selected by our editorial team, independent of our parent company. Some of our stories include affiliate links. If you buy something through one of these links, we may earn an affiliate commission.
Comment
Comments
Share
Tweet
Share
Save

Popular on Engadget

Engadget's 2019 Back-to-School Guide

Engadget's 2019 Back-to-School Guide

View
Android Q is now simply Android 10

Android Q is now simply Android 10

View
Google Photos' face-grouping feature comes to Europe

Google Photos' face-grouping feature comes to Europe

View
'Blair Witch' expertly remixes horror gaming's greatest hits

'Blair Witch' expertly remixes horror gaming's greatest hits

View
'Blacksad' is a promising detective game based on a cult comic

'Blacksad' is a promising detective game based on a cult comic

View

From around the web

Page 1Page 1ear iconeye iconFill 23text filevr