{"id":4351,"date":"2024-07-08T15:12:32","date_gmt":"2024-07-08T20:12:32","guid":{"rendered":"https:\/\/www.darkreading.com\/cyberattacks-data-breaches\/10b-passwords-pop-up-on-dark-web-rockyou2024-release"},"modified":"2024-07-08T15:12:32","modified_gmt":"2024-07-08T20:12:32","slug":"10b-passwords-pop-up-on-dark-web-rockyou2024-release","status":"publish","type":"post","link":"https:\/\/ddi.mohflo.net\/index.php\/2024\/07\/08\/10b-passwords-pop-up-on-dark-web-rockyou2024-release\/","title":{"rendered":"10B Passwords Pop Up on Dark Web &#8216;RockYou2024&#8217; Release"},"content":{"rendered":"<div class=\"media_block\"><a href=\"https:\/\/i0.wp.com\/eu-images.contentstack.com\/v3\/assets\/blt6d90778a997de1cd\/blt3cf10f92578ee5c2\/668c470c0860b4218ed2d021\/password_designer491_alamy.jpg?ssl=1\"><img data-recalc-dims=\"1\" decoding=\"async\" src=\"https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/07\/10b-passwords-pop-up-on-dark-web-rockyou2024-release.jpg?w=640&#038;ssl=1\" class=\"media_thumbnail\"><\/a><\/div>\n<div><img data-recalc-dims=\"1\" decoding=\"async\" src=\"https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/07\/10b-passwords-pop-up-on-dark-web-rockyou2024-release.jpg?w=640&#038;ssl=1\" class=\"ff-og-image-inserted\"><\/div>\n<p class=\"ContentParagraph ContentParagraph_align_left\" data-testid=\"content-paragraph\"><span class=\"ContentText ContentText_variant_bodyNormal\" data-testid=\"content-text\">A user has leaked nearly 10 billion unique plaintext passwords on a popular hacking forum, seemingly obtained through several past breaches.<\/span><\/p>\n<p class=\"ContentParagraph ContentParagraph_align_left\" data-testid=\"content-paragraph\"><span class=\"ContentText ContentText_variant_bodyNormal\" data-testid=\"content-text\">The list is coined RockYou2024, due to its file name, rockyou.txt.<\/span><\/p>\n<p class=\"ContentParagraph ContentParagraph_align_left\" data-testid=\"content-paragraph\"><span class=\"ContentText ContentText_variant_bodyNormal\" data-testid=\"content-text\"><a class=\"ContentText-BodyTextChunk ContentText-BodyTextChunk_link\" target=\"_blank\" href=\"https:\/\/www.malwarebytes.com\/blog\/news\/2024\/07\/rockyou2024-nearly-10-billion-passwords-leaked-online\" rel=\"noopener\">Researchers say that<\/a><\/span><span class=\"ContentText ContentText_variant_bodyNormal\" data-testid=\"content-text\"> while the list does have some value for attackers to make a brute-force attack, it&#8217;s unlikely that any website would allow a threat actor to try such a significant number of passwords. If cybercriminals wish to combine the list with data from other breaches, however, they could possibly get results if passwords have been reused, which could lead to a successful <\/span><span class=\"ContentText ContentText_variant_bodyNormal\" data-testid=\"content-text\"><a class=\"ContentText-BodyTextChunk ContentText-BodyTextChunk_link\" target=\"_blank\" href=\"https:\/\/www.darkreading.com\/cyberattacks-data-breaches\/23andme-files-credential-stuffing-attack-with-sec\" rel=\"noopener\">credential-stuffing attack<\/a><\/span><span class=\"ContentText ContentText_variant_bodyNormal\" data-testid=\"content-text\">.<\/span><\/p>\n<p class=\"ContentParagraph ContentParagraph_align_left\" data-testid=\"content-paragraph\"><span class=\"ContentText ContentText_variant_bodyNormal\" data-testid=\"content-text\">\u201cThe dataset is too large to be of any realistic use as part of any effort to crack a given hash \u2014 it&#8217;s simply too much low-quality data to successfully use in attacks \u2014 and the value of the data is negligible compared to good prepared wordlists and rulesets in the hands of a capable actor,&#8221; says Darren James, a senior product manager at Specops Software.&nbsp;<\/span><\/p>\n<p class=\"ContentParagraph ContentParagraph_align_left\" data-testid=\"content-paragraph\"><span class=\"ContentText ContentText_variant_bodyNormal\" data-testid=\"content-text\">Users are likely safe if they&#8217;re careful and are not reusing passwords. They should also make sure their passwords are unique and complex, and implement multifactor authentication (MFA) wherever possible.<\/span><\/p>\n<p class=\"ContentParagraph ContentParagraph_align_left\" data-testid=\"content-paragraph\"><span class=\"ContentText ContentText_variant_bodyNormal\" data-testid=\"content-text\">&#8220;[Instead of worrying about the dump], organizations would be better off focusing on best practices like encouraging passphrases, protecting against actual compromised passwords, and defending against targeted wordlist attacks with custom block lists,&#8221; James says. &#8220;RockYou2024 is just as another clickbait compilation.&#8221;<\/span><\/p>\n<p><a href=\"https:\/\/www.darkreading.com\/cyberattacks-data-breaches\/10b-passwords-pop-up-on-dark-web-rockyou2024-release\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>A user has leaked nearly 10 billion unique plaintext passwords<\/p>\n","protected":false},"author":12,"featured_media":4352,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[1],"tags":[809],"class_list":["post-4351","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-uncategorized","tag-dark-reading"],"featured_image_urls":{"full":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/07\/10b-passwords-pop-up-on-dark-web-rockyou2024-release-scaled.jpg?fit=2560%2C1448&ssl=1",2560,1448,false],"thumbnail":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/07\/10b-passwords-pop-up-on-dark-web-rockyou2024-release-scaled.jpg?resize=150%2C150&ssl=1",150,150,true],"medium":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/07\/10b-passwords-pop-up-on-dark-web-rockyou2024-release-scaled.jpg?fit=300%2C170&ssl=1",300,170,true],"medium_large":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/07\/10b-passwords-pop-up-on-dark-web-rockyou2024-release-scaled.jpg?fit=640%2C363&ssl=1",640,363,true],"large":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/07\/10b-passwords-pop-up-on-dark-web-rockyou2024-release-scaled.jpg?fit=640%2C362&ssl=1",640,362,true],"1536x1536":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/07\/10b-passwords-pop-up-on-dark-web-rockyou2024-release-scaled.jpg?fit=1536%2C869&ssl=1",1536,869,true],"2048x2048":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/07\/10b-passwords-pop-up-on-dark-web-rockyou2024-release-scaled.jpg?fit=2048%2C1159&ssl=1",2048,1159,true],"chromenews-featured":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/07\/10b-passwords-pop-up-on-dark-web-rockyou2024-release-scaled.jpg?fit=1024%2C579&ssl=1",1024,579,true],"chromenews-large":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/07\/10b-passwords-pop-up-on-dark-web-rockyou2024-release-scaled.jpg?resize=825%2C575&ssl=1",825,575,true],"chromenews-medium":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/07\/10b-passwords-pop-up-on-dark-web-rockyou2024-release-scaled.jpg?resize=590%2C410&ssl=1",590,410,true]},"author_info":{"display_name":"Dark Reading","author_link":"https:\/\/ddi.mohflo.net\/index.php\/author\/darkreading\/"},"category_info":"<a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/uncategorized\/\" rel=\"category tag\">Uncategorized<\/a>","tag_info":"Uncategorized","comment_count":"0","jetpack_featured_media_url":"https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/07\/10b-passwords-pop-up-on-dark-web-rockyou2024-release-scaled.jpg?fit=2560%2C1448&ssl=1","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts\/4351","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/users\/12"}],"replies":[{"embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/comments?post=4351"}],"version-history":[{"count":0,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts\/4351\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/media\/4352"}],"wp:attachment":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/media?parent=4351"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/categories?post=4351"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/tags?post=4351"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}