In May 2016, a search engine for hacked data and a hacker obtained over 400 million records from MySpace. Both parties claimed that they had obtained the data from a past, unreported data security incident. The leaked information contained emails, passwords, usernames, and second passwords. The hacker tried to sell the information for $2,800 or 6 Bitcoin on the dark web.
Summary: Hackers stole the details of 617 million online accounts from 16 hacked websites, including Dubsmash, MyHeritage, Whitepages, Fotolog, BookMate, CoffeeMeetsBagel, HauteLook, and DataCamp. They then put the details on the dark web Dream Market cyber-souk for less than $20,000 in Bitcoin. Most of the leaked information consisted of email addresses, account-holder names, and hashed passwords that had to be cracked before they could be used.
Summary: The hacker who stole 617 million records from the 16 sites earlier in this list stole another 127 million from 8 more websites. They pulled data from websites that included Houzz, Ge.tt, Ixigo, YouNow, Roll20, Coinmama, Stronghold Kingdoms, and PetFlow. After gathering all the information, the hacker put up the hacked data for $14,500 in Bitcoin. Most of the stolen information consisted of email addresses, names, scrambled passwords, and other account and login data.
Summary: A hacker accessed 77 million Sony PSN and Qriocity user accounts. These users were also unable to go online for 23 days due to the hack. Although Sony encrypted all of the credit card information on its systems and there was no evidence that credit card data had been stolen, the hacker may have been able to access credit card numbers and CVV numbers. In addition, other personal data, such as names, email addresses, dates of birth, account passwords, and addresses, were also compromised.
Summary: Hackers obtained the personal information of up to 13 million subscribers of Maple Story, a popular online game by Nexon Korea Corp. The leaked data included resident registration numbers, user IDs, names, and passwords.
The security of the Horizon bridge hinged on a "multisig" wallet that required only two signatures to initiate transactions. Some researchers speculate the breach was the result of a "private key compromise," where hackers obtained the password, or passwords, required to gain access to a crypto wallet.
It follows a series of notable attacks on other blockchain bridges. The Ronin Network, which supports crypto game Axie Infinity, lost more than $600 million in a security breach that took place in March. Wormhole, another popular bridge, lost over $320 million in a separate hack a month earlier.
A: The correct answer is 5. The best practices are to only change your password when there's proof or suspicion that your account might be hacked. More tips on how to know when an account is hacked can be found in this and this blog.
A: The correct answer is 2. If you reuse passwords across different sites a hack of one website can result in attackers using this stolen username and password to gain access to your accounts for another website. If you want to learn more about why password reuse is a bad idea, read this article.
A: The correct answer is 3. If your username and password is stolen the account for that particular hacked website is at risk, but also your accounts for any other website were you use that same password. If you want to learn more about it read here why password reuse is a bad idea.
A: The correct answer is 2. Passwords should be long enough, minimum 12 or 14 characters is recommended. Passwords should also be random because attackers will have giant lists of predictable passwords they can use to crack passwords or gain access to your online accounts. They should also be unique. If you reuse passwords across different sites a hack of one website can result in attackers using this stolen username and password to gain access to your accounts for another website. If you want to learn more on how to create strong passwords, read this blog.
A: The correct answer is 2. It sure is convenient, but this convenience comes with a price. If your password is stolen in a hack of 1 site user can use that to gain acces to your accounts on other sites. 2b1af7f3a8