"This latest corpus of data came to us as a result of the FBI seizing multiple devices belonging to a suspect."
"We hadn't seen about 7.4% of them in HIBP before, which might sound small, but that's 46 million vulnerable passwords we weren't giving people using the service the opportunity to block,"
"So, we've added those and bumped the prevalence count on the other 584 million we already had."
"It's the reminder that compromised passwords continue to create risk long after the original breach. The fact that 630 million credentials were recovered from a single individual's devices underscores how durable and reusable identity data has become in the hands of attackers."
The FBI transferred 630 million stolen credentials to Have I Been Pwned after seizing multiple devices from a suspect who had accumulated the corpus. About 7.4% of those credentials were previously unseen in the HIBP database, representing roughly 46 million newly exposed passwords that have now been added. The other 584 million records were already present and had their prevalence counts increased. Compromised credentials remain valuable and reusable long after original breaches, sustaining attacker risk. Recent research shows rising credential brute-force campaigns and an 84% year-over-year increase in phishing emails featuring infostealers, underscoring identity-focused security needs.
Read at Securitymagazine
Unable to calculate read time
Collection
[
|
...
]