I just always assume my info has been leaked and use randomly generated passwords and 2FA where possible as well as “not-real” security questions.
I found the stupid piece of malware that leaked my info.
TrojanDownloader:MSIL/FormBook.D!MTB
Installed alongside a pirated photo editing software back in 2021
I don’t understand how to find out which specific sites had my data leaked. Without that I can’t take any action. I’m subscribed to email alerts but the alert did not include any details like the article said it would.
As another poster detailed, this is not a company that exposed your info: these credentials are all from stealer logs, which are logs of credentials stolen by keyloggers installed on machines. If your credentials were in this report, it means that you’ve entered that username and password on a machine with malware on it. Could be your personal machine, or it could be some other computer you’ve used.
That’s true. My point was just that the important thing here is knowing personally which domains were affected so one can personally change those sets of credentials. If I don’t know which of my credentials leaked then there’s no value to me.
I was able to finally get access and did change the specific credential that had leaked (again, not assigning blame to any specific site here).
Finally, a data breach that doesn’t include me. Good to know I dodged it.
Just checked my emails and both were pwned. Bummer
I really wish they could check phone numbers. I’ve been getting a TON of spam recently and it would be interesting to see where it’s coming from.
There has likely been an evolution of war dialers. It’s probably easier to blast through every possible number once a year, and sell a list of every valid number. Targeting specific area codes is probably faster and would avoid some legal problems.
Huh. You think read receipts via RCS could make it worse? Obviously Google would probably have to make an exception to allow for this but hey “
Don’t Be Evil”I have no idea, unfortunately. Tinkering with phones and ways to exploit messaging is something I haven’t done in a number of years.
My first guess would be yes? If you ever get a blank email with only the subject line of “Hi”, “Hello” or similar, it is simply a test to see if your email address is valid. It’s not a stretch to assume there are also simple ways to verify valid numbers that can also recieve text messages.
Yea just got the alert that one of my old email addresses was affected
Does that mean the malware was once on your system?
I doubt it. Probably just means some website i signed up to using that email was compromised and had all their data leaked.
For stealerlogs yes, it means malware was on your system, and exfiltrated data, typically from your browsers.
I don’t think that’s guaranteed to be true.
A very old email of mine which I haven’t used in many years was in the breach.
None of my other email addresses were in there, so it’s highly unlikely that I was affected by this malware in the last decade.
That email has been in many other breaches however, so I wouldn’t be surprised if somebody who had access to an old dump was infected.
My money’s on some random skid who downloaded an old database dump and got infected when they downloaded some bad warez.Either that, or this includes credentials from people who had the malware 15+ years ago.
Then they must have tried your password and saved it to one of a specific number of places. Infostealers are by definition a class of malware, which means it’s got to be installed somewhere with access to the directory storing the credential.
Or it was from an old computer, or mislabeled.
https://www.youtube.com/watch?v=L3f9do5mtT8
Here’s a good talk on infostealers for anyone curious.
The blog post regarding this “dump” suggests that it was actually from malware, so the answer to “Does that mean malware was once on your system?” is likely to be Yes. https://www.troyhunt.com/processing-23-billion-rows-of-alien-txtbase-stealer-logs/
my email has been in several breaches, for example trillian chat that i have never even heard of, and some virtual keyboard i definitely have not installed…should i suspect malware?
