{"id":5482,"date":"2016-06-13T05:25:57","date_gmt":"2016-06-13T09:25:57","guid":{"rendered":"https:\/\/me-en.kaspersky.com\/blog\/?p=5482"},"modified":"2019-11-15T15:24:09","modified_gmt":"2019-11-15T11:24:09","slug":"millions-twitter-accounts-leak","status":"publish","type":"post","link":"https:\/\/me-en.kaspersky.com\/blog\/millions-twitter-accounts-leak\/5482\/","title":{"rendered":"Faster, harder, Twitter: millions of passwords leaked"},"content":{"rendered":"<p>Everyone likes Twitter. Well, okay, maybe not everyone, but at least\u00a0<a href=\"https:\/\/about.twitter.com\/ru\/company\" target=\"_blank\" rel=\"noopener noreferrer nofollow\">310 million users<\/a>\u00a0visit the microblogging platform monthly. And now these 310 million have to consider changing their Twitter password. This is not because they are as insecure as 123456 or something like that, but because a database of\u00a0<a href=\"http:\/\/www.zdnet.com\/article\/twitter-32-million-credentials-accounts-selling-online\/\" target=\"_blank\" rel=\"noopener noreferrer nofollow\">379 million Twitter accounts with passwords<\/a>\u00a0are now being sold on the Darknet.<\/p>\n<p>Astrologers proclaimed a month of leaks. The population of leaks doubled.\u2019 If you know what I mean. The announcement about\u00a0<a href=\"https:\/\/www.kaspersky.com\/blog\/linkedin-password-leak\/12146\/\" target=\"_blank\" rel=\"noopener noreferrer nofollow\">117 million LinkedIn accounts<\/a>\u00a0was shortly followed by the leakage of several hundred million\u00a0<a href=\"https:\/\/www.kaspersky.com\/blog\/myspace-tumbler-data-breach\/12252\/\" target=\"_blank\" rel=\"noopener noreferrer nofollow\">MySpace and Tumblr accounts<\/a>, then by\u00a0<a href=\"https:\/\/threatpost.com\/100m-russian-facebook-credentials-for-sale\/118483\/\" target=\"_blank\" rel=\"noopener noreferrer nofollow\">100 million VK.com accounts<\/a>. Now the hacker associated with those leaks,Tessa88, claims to have 379 million Twitter accounts. And they are for sale for just 10 bitcoins, which is about $5,280.<\/p>\n<p>379 million seems to be a bit bigger, than Twitter\u2019s monthly audience, but the\u00a0<a href=\"https:\/\/www.leakedsource.com\/blog\/twitter\" target=\"_blank\" rel=\"noopener noreferrer nofollow\">analysis<\/a>\u00a0done by LeakedSource shows that there are in fact a little more than 32 million unique accounts. Yet 32 million is still a big deal.<\/p>\n<p>LeakedSource believes that it\u2019s not Twitter to blame for the leak, but the users themselves. It looks like Twitter was not hacked, because the passwords in the database were in plain text, and LeakedSource is sure that Twitter was not storing them in plain text.<\/p>\n<p>So the passwords were probably stolen from the browsers which were infected by some type of malware, that was stealing all the credentials it could steal. Yes, malware is not only about encrypting your girlfriends pictures and\u00a0<a href=\"https:\/\/www.kaspersky.com\/blog\/why-you-dont-pay-ransomware\/12214\/\" target=\"_blank\" rel=\"noopener noreferrer nofollow\">terrorizing hospitals<\/a>. It\u2019s about collecting huge sets of credentials as well.<\/p>\n<blockquote class=\"twitter-tweet\" data-width=\"500\" data-dnt=\"true\">\n<p lang=\"en\" dir=\"ltr\"><a href=\"https:\/\/twitter.com\/hashtag\/Twitter?src=hash&amp;ref_src=twsrc%5Etfw\" target=\"_blank\" rel=\"noopener nofollow\">#Twitter<\/a> security <a href=\"https:\/\/twitter.com\/hashtag\/tips?src=hash&amp;ref_src=twsrc%5Etfw\" target=\"_blank\" rel=\"noopener nofollow\">#tips<\/a> <a href=\"https:\/\/t.co\/jUoQvqEtmp\" target=\"_blank\" rel=\"noopener nofollow\">https:\/\/t.co\/jUoQvqEtmp<\/a> <a href=\"https:\/\/twitter.com\/hashtag\/socialmedia?src=hash&amp;ref_src=twsrc%5Etfw\" target=\"_blank\" rel=\"noopener nofollow\">#socialmedia<\/a> <a href=\"https:\/\/twitter.com\/hashtag\/SMM?src=hash&amp;ref_src=twsrc%5Etfw\" target=\"_blank\" rel=\"noopener nofollow\">#SMM<\/a> <a href=\"https:\/\/t.co\/eexdpkb4zY\" target=\"_blank\" rel=\"noopener nofollow\">pic.twitter.com\/eexdpkb4zY<\/a><\/p>\n<p>\u2014 Kaspersky (@kaspersky) <a href=\"https:\/\/twitter.com\/kaspersky\/status\/720976861019381760?ref_src=twsrc%5Etfw\" target=\"_blank\" rel=\"noopener nofollow\">April 15, 2016<\/a><\/p><\/blockquote>\n<p><script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<p>\u00a0<\/p>\n<p>Ok, let\u2019s get to the giveaway part. Are you a Twitter user? Then you\u2019d better do the following:<\/p>\n<ol>\n<li>Change your password. Right now!<\/li>\n<li>Remember that a password like 123456789 is NOT OK. However, LeakedSource noted that 32,775 accounts in this database used exactly that password.We can help you create a\u00a0<a href=\"https:\/\/www.kaspersky.com\/blog\/remember-strong-passwords\/6386\/\" target=\"_blank\" rel=\"noopener noreferrer nofollow\">strong and yet easy to memorize password<\/a>. You can also test out what combinations are the strongest with our\u00a0<a href=\"https:\/\/password.kaspersky.com\/?utm_medium=rdr&amp;utm_source=redirector&amp;utm_campaign=old_url&amp;_ga=1.49949350.1089313946.1431258907\" target=\"_blank\" rel=\"noopener noreferrer\">Password Checker<\/a>. It is free and we do not store data. It is just a good educational tool to aid you in creating a strong password.<\/li>\n<li>Did you re-use your Twitter password on other accounts? Then don\u2019t forget to change those too. That\u2019s how\u00a0<a href=\"https:\/\/www.kaspersky.com\/blog\/change-passwords-now\/12284\/\" target=\"_blank\" rel=\"noopener noreferrer nofollow\">Mark Zuckerberg\u2019s Twitter account was stolen<\/a>\u00a0recently: the hackers learned his email and password from the LinkedIn leak and \u2014 surprise! \u2014 they were the same on Twitter. Yes, that teaches to never reuse your passwords.<\/li>\n<li>Install a\u00a0<a href=\"https:\/\/store.kaspersky.com\/store\/kaspersk\/en_IE\/buy\/productID.320853100\/quantity.1\/Currency.USD?cid=gl_socmed_pro_ona_smm__onl_b2c_kasperskydaily_lnk____kismd___&amp;affiliate=gl_socmed_pro_ona_smm__onl_b2c_kasperskydaily_lnk____kismd___&amp;_ga=1.49949350.1089313946.1431258907\" target=\"_blank\" rel=\"noopener noreferrer nofollow\">good security solution<\/a>. Among the other good things, it will protect you from malware that can steal your data. So you won\u2019t find your precious account leaked in a case like this one.<\/li>\n<\/ol>\n","protected":false},"excerpt":{"rendered":"<p>Everyone likes Twitter. Well, okay, maybe not everyone, but at least\u00a0310 million users\u00a0visit the microblogging platform monthly. And now these 310 million have to consider changing their Twitter password. This<\/p>\n","protected":false},"author":696,"featured_media":5483,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[5,9],"tags":[],"class_list":{"0":"post-5482","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-news","8":"category-tips"},"hreflang":[{"hreflang":"en-ae","url":"https:\/\/me-en.kaspersky.com\/blog\/millions-twitter-accounts-leak\/5482\/"},{"hreflang":"ar","url":"https:\/\/me.kaspersky.com\/blog\/millions-twitter-accounts-leak\/3844\/"},{"hreflang":"en-us","url":"https:\/\/usa.kaspersky.com\/blog\/millions-twitter-accounts-leak\/7280\/"},{"hreflang":"es-mx","url":"https:\/\/latam.kaspersky.com\/blog\/millions-twitter-accounts-leak\/7246\/"},{"hreflang":"es","url":"https:\/\/www.kaspersky.es\/blog\/millions-twitter-accounts-leak\/8466\/"},{"hreflang":"it","url":"https:\/\/www.kaspersky.it\/blog\/millions-twitter-accounts-leak\/8348\/"},{"hreflang":"ru","url":"https:\/\/www.kaspersky.ru\/blog\/millions-twitter-accounts-leak\/12183\/"},{"hreflang":"tr","url":"https:\/\/www.kaspersky.com.tr\/blog\/millions-twitter-accounts-leak\/2173\/"},{"hreflang":"x-default","url":"https:\/\/www.kaspersky.com\/blog\/millions-twitter-accounts-leak\/12325\/"},{"hreflang":"fr","url":"https:\/\/www.kaspersky.fr\/blog\/millions-twitter-accounts-leak\/5753\/"},{"hreflang":"de","url":"https:\/\/www.kaspersky.de\/blog\/millions-twitter-accounts-leak\/8014\/"},{"hreflang":"ja","url":"https:\/\/blog.kaspersky.co.jp\/millions-twitter-accounts-leak\/11707\/"},{"hreflang":"ru-kz","url":"https:\/\/blog.kaspersky.kz\/millions-twitter-accounts-leak\/12183\/"},{"hreflang":"en-au","url":"https:\/\/www.kaspersky.com.au\/blog\/millions-twitter-accounts-leak\/12325\/"},{"hreflang":"en-za","url":"https:\/\/www.kaspersky.co.za\/blog\/millions-twitter-accounts-leak\/12325\/"}],"acf":[],"banners":"","maintag":[],"_links":{"self":[{"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/posts\/5482","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/users\/696"}],"replies":[{"embeddable":true,"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/comments?post=5482"}],"version-history":[{"count":2,"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/posts\/5482\/revisions"}],"predecessor-version":[{"id":14866,"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/posts\/5482\/revisions\/14866"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/media\/5483"}],"wp:attachment":[{"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/media?parent=5482"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/categories?post=5482"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/me-en.kaspersky.com\/blog\/wp-json\/wp\/v2\/tags?post=5482"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}