The latest company that has leaked user accounts is Rambler, one of the biggest Russian web portals that provide services to millions of users worldwide.
Millions of Accounts Leaked from Rambler
Information about Rambler’s leak after the popular web site Leaked Source posted a data dump containing almost 100 million user credentials. According to the posted data, the security breach occurred on February 12 2012 when the records were compromised.
The security issue is very severe as the dump contains usernames and passwords stored in plain text format. Security experts note that the passwords were probably hashed with a weak system that allowed the attackers to reveal the contents without much trouble. The other possibility is that the passwords were stored in plain text format on the server by default.
Each account record contains the username, email address, password, ICQ ID and internal data. The Top 50 username and password combinations include the popular and unsafe pairs such as asdasd, 123456, 654321, password, qwerty, qwertyuiop, pass123 and others.
The following security tips are given to affected users:
- Immediately change your Rambler password even if you are a new member. Security experts assume that other potential leaks may occur if the site’s staff have not implemented better security.
- Use strong passwords. Consider best security practices when choosing a new password for all sites and services that you use.
- Store safely your passwords. Use password management software with strong encryption.