facebook, gmail and twitter accounts breached

Published: 2013-12-06
Last Updated: 2013-12-06 02:15:57 UTC
by Mark Hofman (Version: 1)
3 comment(s)

Spiderlabs published an interesting article on this the other day. http://blog.spiderlabs.com/2013/12/look-what-i-found-moar-pony.html

The list has now appeared on pastebin and is being sold for 0.05 bitcoins.  (last time I checked they made about $600 so far).  

If you haven't already you may want to start looking at the strong authentication options for some of these services. 

Mark H


3 comment(s)


Here are links for those who do not know what to search for...

Duo Security Advances Two-Factor Authentication -- hxxps://www.hackdefendr.com/?p=378
- Duo is free for the regular user and offers enterprise class for businesses.
- Duo covers everything from websites, shell access, and email access

Google's 2-Step Verification -- hxxp://www.google.com/landing/2step/
Facebook's Login Approval -- hxxps://www.facebook.com/note.php?note_id=10150172618258920
Twitter's 2 Factor Login -- hxxps://blog.twitter.com/2013/getting-started-with-login-verification
LinkedIn's 2 Factor Login -- hxxp://blog.linkedin.com/2013/05/31/protecting-your-linkedin-account-with-two-step-verification/

Can you provide the pastebin link? I'm searching but not finding them there. Thanks.
We're getting a number of requests regarding the data set. At this time Trustwave has not released nor will it release a complete set of the discovered data. Stay tuned for a post later today that will discuss what we will release and to whom. Any claim that any related information has been posted on Pastebin is false.

Per Spiderlabs Site. They aren't posting it to Pastebin..

Diary Archives