According to Forbes, security experts have cautioned against using one of the biggest online password leak databases.
At the end of last week, a hacker-friendly forum shared the database, a text file called “RockYou2024”, which has an astounding 9,948,575,739 unique passwords stored in plain text.
Experts from CyberNews claim that this enormous collection of passwords that have been stolen could lead to a wave of identity theft, financial fraud, and data breaches, News said.
The database appears to contain both recent and historical data breaches.
“The RockYou2024 leak is essentially a list of actual passwords that people from all over the world have used.
indicating that the likelihood of credential stuffing assaults is significantly increased when threat actors have multiple passwords,” the researchers added.
Hackers frequently use a technique known as “credential stuffing” to obtain unauthorized access to another website by using stolen login credentials from one.
People who often use the same login credentials across platforms may be more susceptible to this kind of cyberattack.
The CyberNews team issued a warning: “Threat actors could exploit the RockYou2024 password compilation to conduct brute-force attacks and gain unauthorized access to various online accounts used by individuals who employ passwords included in the dataset.”
Three years ago, hackers posted a text file online called RockYou2021.txt, which was leaked earlier. RockYou2024.txt expands on that disclosure.
