The Mother of all Breaches: 26 Billion Records Found Online
The discovery of a vast collection of 26 billion stolen records, including user data from LinkedIn, X (formerly Twitter), and Adobe, known as the "Mother of all breaches" (MOAB) has raised significant concerns.
Unearthed by cybersecurity researcher Bob Dyachenko in collaboration with Cybernews, this massive dataset, equivalent to 12 terabytes, is suspected to have been compiled by either a cybercriminal group or an underground data broker.
Cybernews researchers emphasise the severe risks associated with this dataset, as malicious actors could exploit it for various attacks, including identity theft, sophisticated phishing schemes, targeted cyberattacks, and unauthorised access to personal accounts. Notably surpassing the previously largest data leak, COMB, the MOAB comprises mostly old data from past breaches but may also include new data from recent incidents. Even the utilisation of the old data in the MOAB could empower cybercriminals, leading to concerns about credential-stuffing attacks on individuals and businesses with weak password security.
The identity of the entity responsible for this extensive repository of stolen data remains elusive, posing a formidable challenge for cybersecurity researchers and law enforcement agencies amid a landscape where numerous criminal groups and independent cyber attackers actively seek vulnerabilities to exploit.
Cybernews has created interactive databases with information on affected companies and email addresses. Use the following link provided see if any systems you use are affected – https://cybernews.com/security/billions-passwords-credentials-leaked-mother-of-all-breaches/
PureCyber’s take on this: DON’T PANIC!
The team at PureCyber are monitoring this situation and the potential impact on our clients. Most of this data will be from historical breaches which, if you’re already a client of ours you will have been notified of previously. If there are any new discoveries clients will be notified immediately.
If you suspect that your information, more importantly your password may be compromised we advise the following:
Make sure you have good cyber hygiene to maintain a strong and secure online presence. This includes using complex passwords that are not linked to you in anyway like name, family, pets etc..
If Multi-factor authentication is available, make sure you set this up as soon as possible. This isn't the "silver bullet" to stop the affects of this breach but acts as an extra layer of protection in case your password is breached. MFA should always be paired with a Unique complex password.
Be extra vigilant for phishing attacks pretending to be the breached system providers
Ensure that all online accounts you use have unique and different passwords. The best and easiest way to achieve this is through a password manager
If you have concerns and require any further advice or support please reach out on info@purecyber.com