this post was submitted on 26 Feb 2025
202 points (98.6% liked)

Technology

63236 readers
5241 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago
MODERATORS
L3s@lemmy.world
enu@lemmy.world
technopagan@lemmy.world
L4s@lemmy.world
202
Have I Been Pwned adds 284M accounts stolen by infostealer malware (www.bleepingcomputer.com)
submitted 11 hours ago by Captainautism@lemmy.dbzer0.com to c/technology@lemmy.world
16 comments fedilink hide all child comments
top 16 comments
sorted by: hot top controversial new old
[–] simple@lemm.ee 5 points 1 hour ago

Finally, a data breach that doesn't include me. Good to know I dodged it.

[–] Jax@l.hostux.net 6 points 6 hours ago (1 children)

I don't understand how to find out which specific sites had my data leaked. Without that I can't take any action. I'm subscribed to email alerts but the alert did not include any details like the article said it would.

[–] controlphreak@lemmy.ml 8 points 5 hours ago

Use the 'Notify me' option and verify your email address, and then it will show the expanded list of domains that were exposed from the malware:

[–] ohellidk@sh.itjust.works 45 points 10 hours ago (3 children)

I really wish they could check phone numbers. I've been getting a TON of spam recently and it would be interesting to see where it's coming from.

[–] SmokedBillionaire@sh.itjust.works 7 points 6 hours ago

This is a really dumb fix that I started using several months ago when I was getting 5 or 6 spam calls a day.

I would answer, and if they asked for my name or whoever lives at my address I would tell them they have the wrong number, I'm not them, I don't have a house, whatever. Anything to make them positively sure that the person they are looking for does not exist here. Within 1 week the calls dropped off significantly. Now, about 5 months later I get maybe one call per month.

[–] remotelove@lemmy.ca 11 points 8 hours ago (1 children)

There has likely been an evolution of war dialers. It's probably easier to blast through every possible number once a year, and sell a list of every valid number. Targeting specific area codes is probably faster and would avoid some legal problems.

[–] DiagonalHorse@lemmy.ml 4 points 8 hours ago (1 children)

Huh. You think read receipts via RCS could make it worse? Obviously Google would probably have to make an exception to allow for this but hey "~~Don't Be Evil~~"

[–] remotelove@lemmy.ca 1 points 7 hours ago

I have no idea, unfortunately. Tinkering with phones and ways to exploit messaging is something I haven't done in a number of years.

My first guess would be yes? If you ever get a blank email with only the subject line of "Hi", "Hello" or similar, it is simply a test to see if your email address is valid. It's not a stretch to assume there are also simple ways to verify valid numbers that can also recieve text messages.

[–] vollkorntomate@infosec.pub 2 points 7 hours ago

You could in the past (until around 1-2 years ago). I don’t know why it changed, though.

[–] 9tr6gyp3@lemmy.world 23 points 10 hours ago (1 children)

Yea just got the alert that one of my old email addresses was affected

[–] bamboo@lemmy.blahaj.zone 11 points 10 hours ago (1 children)

Does that mean the malware was once on your system?

[–] 9tr6gyp3@lemmy.world 26 points 10 hours ago (2 children)

I doubt it. Probably just means some website i signed up to using that email was compromised and had all their data leaked.

[–] controlphreak@lemmy.ml 10 points 5 hours ago (2 children)

The blog post regarding this "dump" suggests that it was actually from malware, so the answer to "Does that mean malware was once on your system?" is likely to be Yes. https://www.troyhunt.com/processing-23-billion-rows-of-alien-txtbase-stealer-logs/

[–] kusivittula@sopuli.xyz 1 points 12 minutes ago

my email has been in several breaches, for example trillian chat that i have never even heard of, and some virtual keyboard i definitely have not installed.....should i suspect malware?

[–] 9tr6gyp3@lemmy.world 0 points 3 hours ago* (last edited 2 hours ago)

Likely perhaps, but this email address hasn't been actively used by me in over a decade, which means either this dataset is extremely old, or maybe the holders of the data had been compromised by malware when they were attempting to gain access to whatever website. Who knows?

And since it was a singular address, and none of my other addresses were affected, im able to determine the timeline of when I was affected by this. Its during an era where this email address was involved with many data breaches.

There are 23 billion records in this stealer log, with only 284 million unique entries.

[–] Manifish_Destiny@lemmy.world 2 points 5 hours ago

For stealerlogs yes, it means malware was on your system, and exfiltrated data, typically from your browsers.