Two Million stolen Facebook, Twitter login credentials found on 'Pony Botnet' Server
Two million stolen website and email login credentials were found on a botnet command-and-control server, with most of the compromised accounts belonging to Facebook, Google, Yahoo, Twitter, LinkedIn and other popular services. Security researchers at Trustwave's SpiderLabs found a Pony Botnet Controller Server which was located in the Netherlands.
In a blog post, the researchers mentioned that after the Pony Version 1.9 Source code was made public and they found a way to get into the Botnet's Admin area, from where they collected stolen database and statistics.
The Pony Control panel, which is written in Russian language, point outed Facebook was the worst impacted and two Russian Social Media sites i.e. vk.com and odnoklassniki.ru, credentials were also included in the database.
Statistics of stolen login credentials:
- 1,580,000 website login credentials stolen (including 318,121 Facebook login credentials, 21,708Twitter accounts, 54,437 Google-based accounts and 59,549 Yahoo accounts)
- 320,000 email account credentials stolen
- 41,000 FTP account credentials stolen
- 3,000 Remote Desktop credentials stolen
- 3,000 Secure Shell account credentials stolen
To defend your system against such malware issues, keep your computer and browser up-to-date andvirus-free and make sure that you have Facebook's Login Notifications and Google's 2-step verification option enabled.
0 comments:
Post a Comment