LinkedIn’s 2012 data breach—in which a Russian hacker posted the account login details of over 6 million users online—appears to have been much more widespread than originally reported. Four years later, a hacker nicknamed “Peace” is selling a database of 117 million emails and decrypted passwords on Dark Web marketplace “TheRealDeal” for 5 Bitcoins (approx. $2,200). Troy Hunt, an independent researcher who operates the “Have I Been Pwned” site, confirmed that the leaked credentials were legitimate after reaching out to some of the victims.
A LinkedIn spokesperson stated that the company is investigating the matter after this incident. In 2015, LinkedIn settled a class-action lawsuit regarding the 2012 breach, and paid $50 to each of the US victims for a total of $1.25 million, meaning they could potentially be required to pay millions of dollars more to the new list of victims.
A new malware being dubbed “the paranoid malware” was recently discovered by @hFireFox, after evading 56 anti-virus programs. The developers of Furtim—the name is Latin for “stealthy”—makes evading security detection their top priority. Before installing, Furtim checks the targeted machine for security products and virtualized or sandboxed environments, aborting installation if any are found. The list of security items tops 400, and the malware blocks 250 security-related websites as well.
Once Furtim determines that it can proceed with installation, the malware continues to earn its “paranoia” nickname. Yotam Gottesman, senior security researcher at enSilo, explained that Furtim collects unique information from its targeted machines, which is sent and stored on a specific server. This ensures that the payload is only sent once. This is, perhaps, according to Gottesman, a tactic to keep security researchers from collecting samples or analyzing the malware.
*IP addresses provided by Recorded Future.
Want to learn about Alert Logic products in more detail? Call us direct at +1.877.484.8383, for the UK call +44 (0) 203 011 5533, or complete this form. An Alert Logic representative will contact you soon.