25% of the 1.9 billion passwords and usernames bought on the black market are Google accounts
Hackers often try to hack into Google accounts, so Google researchers have spent a year to see how they can steal user accounts.
To get proof of the tools that hackers use to steal passwords, Google works with security experts at California Berkeley University and tracks black market activity. Recently they have published their results.
Most passwords are stolen in two ways: phishing emails or leaks from third parties. From March 2016 to 2017, Google discovered more than 12 million accounts (including username and password). stolen due to scams and 3.3 billion due to 3rd party.
See also: Google's new advanced security turn-on guide to not be hacked
Such a large number is because the password is an attractive item, especially having a Google account will access the password of Gmail, Google Docs, Google Drive . Although this number is large, the research team also only get free information online and limited human resources, so in fact there may be more.
The study also found that up to 25% of the passwords traded on the black market can be used to control Google accounts. 'There are more than 1.9 billion usernames and passwords on the black market forum,' the researcher said. And when many people share passwords for both Google and MySpace accounts, for example, when MySpace leaks data, hackers will try to use the password on Google.
This era no one seems to have a Google account
Even Facebook CEO Mark Zuckerberg shared the same password - dadada - for both Twitter and Pinterest accounts, to hack them in 2016 by a group called OurMine.
There are also a number of ways for companies like Google and users to protect themselves. Researchers use two-factor authentication or password management applications to create separate passwords for each page, avoid duplication, especially don't use simple and easy-to-guess passwords like '12345'.
Anyway, 'password is something we can no longer trust,' said Kurt Thomas, a researcher at Google.
Readers interested in Google reports can read more here.https://static.googleusercontent.com/media/research.google.com/en//pubs/archive/46437.pdf
You should read it
- Google launched the Password Checkup 'god' utility to make your password safer
- How to protect your Google account with Password Alert utility
- How to recover Gmail account?
- Want to secure your Google account? Do not ignore the following!
- Google Account for Android has a new interface, check your account now
- How to retrieve Gmail password, Google login password
- How to make your Google account safer?
- How to Hack Gmail
May be interested
- VNCERT issued an emergency alert warning malicious code exploiting Coinhive virtual moneythe malicious code will automatically run on the user's computer as an extension or directly in the browser to 'dig' bitcoin virtual money, monero ..., illegally use cpu, hard drive, memory ... and send it about hackers' electronic wallets.
- Malware can steal Facebook, Twitter and Gmail accountsresearchers have discovered a new and complex malware variant, based on the famous zeus bank trojan but not just stealing bank accounts.
- BankBot is back on Play Store - an uninterrupted story about malware on Androidafter google's efforts to block malware from play store, malicious applications still find ways to trick android anti-malware and poisoning tools.
- Updating to macOS 10.13.1 brings the root error backif you've just updated to macos high sierra 10.13.1, unfortunately, the security update for mac unlocking bugs is ineffective.
- Update Teamviewer now if you don't want to be hackedteamviewer has released an emergency patch that allows hackers to take control of the computer when they are in the remote control session.
- SIM pairing 4G is locked on iPhone lock in Vietnam - Users should be careful!this morning, after apple locked the ios 10.3.3 and 11 sign, many users confirmed that they could not activate their iphone lock with 4g sim card.