Passwords of nearly two million accounts from Facebook, Google, Twitter and others were hacked, according to the latest report from researchers at Trustwave, a cyber-security firm. The passwords stolen were the easiest ones, such as 1-2-3-4-5, which was a password used 15,000 times on this list, according to “Fox and Friends” live on Thursday morning on Dec. 5.
CNN Money reports that this latest wave of password hacking is the result of “keylogging software,” that was “maliciously installed in an untold number of computers around the world.” Trustwave explained that log-in credentials for key websites were captured by this virus over the past month. These usernames and passwords were sent to the hacker-controlled server.
The server for the hackers was tracked to the Netherlands. This virus hacked into more than 93,000 websites taking the passwords and usernames of almost two million people who have used those websites. As “Fox and Friends” reported today, in previous hacking events, the easier passwords were the ones most used.
With the amount of passwords needed for all the websites visited daily online by an individual, many folks tend to keep the password simple to remember and use the same password across the board for all their accounts. This is a mistake as this just makes the passwords easier to obtain for the hackers.
Experts are advising folks to change their passwords, but not to use easy ones like the 1-2-3-4-5 and to use different passwords for the different websites.
Trustwave has notified the websites of the breach and they also released their findings publicly. Trustwave security research manager said:
"We don't have evidence they logged into these accounts, but they probably did.”
Here are the websites the hackers got into, along with the number of people at each website that the hackers compromised:
• 318,000 Facebook (FB, Fortune 500) accounts
• 70,000 Gmail, Google+ and YouTube accounts
• 60,000 Yahoo (YHOO, Fortune 500) accounts
• 22,000 Twitter (TWTR) accounts
• 9,000 Odnoklassniki accounts (a Russian social network)
• 8,000 ADP (ADP, Fortune 500) accounts (ADP says it counted 2,400)
• 8,000 LinkedIn (LNKD)accounts
(List released by Trustwave)