• Nigerian/African Tech
  • Start Up
  • Internet
    • App
    • Mobile
    • Software
  • Gadgets
  • Money
  • Video
Tech News, Magazine & Review WordPress Theme 2017
  • Home
  • Africa
  • Business
  • Video
  • Metaverse
  • AI
  • Gadgets
  • Earnings
  • Tips
Generic selectors
Exact matches only
Search in title
Search in content
Post Type Selectors
  • Home
  • Africa
  • Business
  • Video
  • Metaverse
  • AI
  • Gadgets
  • Earnings
  • Tips
Generic selectors
Exact matches only
Search in title
Search in content
Post Type Selectors
TechBooky
Generic selectors
Exact matches only
Search in title
Search in content
Post Type Selectors
Home Commerce

Firm That Exposed Breach Of ‘Billion Passwords’ Quickly Offered $120 Service To Find Out If You’re Affected

Femi by Femi
August 6, 2014
Share on FacebookShare on Twitter

Firm That Exposed Breach Of ‘Billion Passwords’ Quickly Offered $120 Service To Find Out If You’re Affected
Comment Now Follow Comments

The New York Times dropped the freakiest security story since Heartbleed Tuesday, warning people that a “Russian gang has amassed over a billion passwords.” The story provides few details beyond hyperbolic numbers: “ 1.2 billion username and password combinations” and “more than 500 million email addresses” are in the hands of a group of 20-something hackers in Russia, according to the report. No specifics about the state of those passwords: whether they’re in clear-text — the worst case scenario — or in encrypted form. The Internet predictably panicked as the story of yet another massive password breach went viral.

Also On TechBooky

WhatsApp Adds Proxy Support To Bypass Restrictions In Some Countries

iDenfy Partners With Beera Station To Enhance The Age Verification Process With ID Verification

Best VPN Services You Can Start Using Today For Free

Apple Is Introducing End-To-End Encryption To iCloud Backups

Apple Sued Over AirTags Being Used By Alleged Stalkers

We don’t know whose email addresses are included or which sites are affected, which helps fuel insecurity hysteria. The only use of the passwords the story mentioned was the hackers using them to break into Twitter TWTR -0.46% accounts to send out spammy messages. The NYT says it found out about the hack from Alex Holden, of Milwaukee-based Hold Security, a security firm that looks for big hacks. He said the hackers got the passwords using a botnet and SQL injections — a popular hacking technique — but Holden “would not name the victims, citing nondisclosure agreements and a reluctance to name companies whose sites remained vulnerable,” reported the Times, which asked a third-party security expert to confirm that Hold Security’s database of stolen credentials was “authentic.” Holden wasn’t giving out details but he was willing to pump up the danger of the breach, telling the Times: “Hackers did not just target U.S. companies, they targeted any website they could get, ranging from Fortune 500 companies to very small websites. And most of these sites are still vulnerable.”

Holden-breach-notification

Panic time, right? You can’t even change your passwords to protect yourself because you don’t know which websites are affected or if they’re still vulnerable. This is the worst kind of news, spare on details and causing a panic without offering a solution. Oh wait, but there is a solution! You can pay “as low as $120″ to Hold Security monthly to find out if your site is affected by the breach. Hold Security put a page up on its site about its new breach notification service around the same time the New York Times story went up.

“In addition to continuous monitoring, we will also check to see if your company has been a victim of the latest CyberVor breach,” says the site’s description of the service using its pet name for the most recent breach. “The service starts from as low as 120$/month and comes with a 2-week money back guarantee, unless we provide any data right away.”

Hold Security replaced this with a “Coming soon” message shortly after it drew attention on Twitter

Shortly after Wall Street Journal reporter Danny Yadron linked to the page on Twitter and asked questions about it, the firm replaced the description of the service with a “coming soon” message.

Holden says by email that the service will actually be $10/month and $120/year. “We are charging this symbolical fee to recover our expense to verify the domain or website ownership,” he says by email. “While we do not anticipate any fraud, we need to be cognizant of its potential. The other thing to consider, the cost that our company must undertake to proactively reach out to a company to identify the right individual(s) to inform of a breach, prove to them that we are the ‘good guys’. Believe it or not, it is a hard and often thankless task.”
It’s certainly in the interest of any security firm to to portray the state of cybersecurity as dire to make their wares more appealing, and that’s something any reader should keep in mind when reading quotes from a security professional. But this is a pretty direct link between a panic and a pay-out for a security firm. Yes, I expect security firms to make money for making the Internet more secure, but I am skeptical of a firm with a financial incentive in creating a panic to be the main source for a story that causes a panic. If nothing else, it should be disclosed in the New York Times story that the firm that reported a major breach hoped to directly profit from it. We don’t just need hashed passwords salted, we need grains of salt in our reporting around security.

source: Kashmir Hill/Forbes

Related Posts:

  • Food Delivery Service Data Leak Unmasks Russian Security Agents
    Food Delivery Service Data Leak Unmasks Russian Security…
  • Google Assistant’s Automatic Password Updater Begins Extensive Rollout
    Google Assistant’s Automatic Password Updater Begins…
  • T-Mobile Confirms It Was Hit By Data Breach
    T-Mobile Confirms It Was Hit By Data Breach
  • Kaseya Says Up To 1,500 Businesses Compromised In The Ransomware Attack
    Kaseya Says Up To 1,500 Businesses Compromised In The…
  • Apple Launched Its iCloud Passwords Extension For Chrome On Windows
    Apple Launched Its iCloud Passwords Extension For Chrome On…
  • Check If You Are A Victim Of The Facebook Recent Data Breach With These Tools
    Check If You Are A Victim Of The Facebook Recent Data Breach…
  • T-Mobile CEO Opens Up On  Data Breach, Hacker Calls Their Security Awful
    T-Mobile CEO Opens Up On Data Breach, Hacker Calls Their…
  • Uber In Settlement With US Prosecutors Admits Covering Up The 2016 Data Breach
    Uber In Settlement With US Prosecutors Admits Covering Up…
Femi

Femi

Paul Balo is a wireless communications technologist with interests in VoIP and 5G technologies. He leads the writing team at TechBooky

BROWSE BY CATEGORIES

Receive top tech news directly in your inbox

Loading

Recent

Tesla Cybertruck Mass Production Won’t Start Until 2024

Tesla Cybertruck Mass Production Won’t Start Until 2024

January 27, 2023
Apple Reportedly Delays Development Of Its Own WiFi Chips

Apple Reportedly Delays Development Of Its Own WiFi Chips

January 27, 2023
Google Commits To Complying With EU Laws On Its Services

Google Commits To Complying With EU Laws On Its Services

January 27, 2023
Airtel Launches Its eSIM Technology In Nigeria

Airtel Launches Its eSIM Technology In Nigeria

January 27, 2023
In Spite Of The Sucess Of Genetically Modified Foods, Debates Abound

In Spite Of The Sucess Of Genetically Modified Foods, Debates Abound

January 27, 2023
How And How Not Gaming Can Be Used In Solving Real Problems

How And How Not Gaming Can Be Used In Solving Real Problems

January 27, 2023
Tesla Sues Former Employee For Allegedly Stealing Trade Secrets

Tesla Made The Most Money In 2022, But Its Future Still Rocky

January 26, 2023
Shutterstock Introduces Its Generative AI Image Tool

Shutterstock Introduces Its Generative AI Image Tool

January 26, 2023
Meta Agrees To $725M Settlement Of Cambridge Analytica Lawsuit

Meta Set To Reinstate Trump’s Facebook And Instagram Accounts

January 26, 2023
Here’s How ChatGPT Can Help Improve Your SEO

Here’s How ChatGPT Can Help Improve Your SEO

January 25, 2023

Browse Archives

January 2023
MTWTFSS
 1
2345678
9101112131415
16171819202122
23242526272829
3031 
« Dec    

About Us

TechBooky

TechBooky is a social Tech blog with a special focus on the budding African Technology sector. TechBooky is currently based in Abuja, Nigeria.

Subscribe to TechBooky

Enter your email address to subscribe to TechBooky and receive notifications of new posts by email.

Join 24 other subscribers.

Receive top tech news directly in your inbox

Loading

Popular Tags

AI (252) amazon (95) android (281) app (610) Apple (473) artificial intelligence (265) business (338) china (113) cloud (135) cryptocurrency (158) ecommerce (109) enterprise (239) facebook (472) gadget (448) gaming (160) google (545) government (381) guest post (108) instagram (137) internet (352) ios (249) iphone (210) microsoft (261) mobile (281) new feature (287) nigeria (276) privacy (135) research (134) samsung (139) security (374) smartphone (235) social media (671) software (415) startup (268) streaming (140) telecom (157) tips (340) transport (104) twitter (216) united states (191) users (132) videos (115) website (159) whatsapp (129) youtube (106)

Quick Links

  • Home
  • Africa
  • Business
  • Video
  • Metaverse
  • AI
  • Gadgets
  • Earnings
  • Tips

Popular Post

  • Trending
  • Comments
  • Latest
Download Free Editable Resume Templates – Word / Docx – 2022

Download Free Editable Resume Templates – Word / Docx – 2022

July 25, 2022
The Best Free PC Games

The Best Free PC Games

July 29, 2022
Recover Permanently Deleted Emails From iCloud Manually

Recover Permanently Deleted Emails From iCloud Manually

March 5, 2022
Resume and Cover letter Templates for free

Resume and Cover letter Templates for free

July 25, 2022
How is Technology Changing Our Definition of What It Means to Be a Human?

How is Technology Changing Our Definition of What It Means to Be a Human?

April 1, 2018
[Fixed] “Outlook Running Slow Windows 10” Issue

[Fixed] “Outlook Running Slow Windows 10” Issue

February 12, 2020
Tesla Cybertruck Mass Production Won’t Start Until 2024

Tesla Cybertruck Mass Production Won’t Start Until 2024

January 27, 2023
Apple Reportedly Delays Development Of Its Own WiFi Chips

Apple Reportedly Delays Development Of Its Own WiFi Chips

January 27, 2023
Google Commits To Complying With EU Laws On Its Services

Google Commits To Complying With EU Laws On Its Services

January 27, 2023
Airtel Launches Its eSIM Technology In Nigeria

Airtel Launches Its eSIM Technology In Nigeria

January 27, 2023
In Spite Of The Sucess Of Genetically Modified Foods, Debates Abound

In Spite Of The Sucess Of Genetically Modified Foods, Debates Abound

January 27, 2023
How And How Not Gaming Can Be Used In Solving Real Problems

How And How Not Gaming Can Be Used In Solving Real Problems

January 27, 2023

Recent News

Tesla Cybertruck Mass Production Won’t Start Until 2024

Tesla Cybertruck Mass Production Won’t Start Until 2024

January 27, 2023
Apple Reportedly Delays Development Of Its Own WiFi Chips

Apple Reportedly Delays Development Of Its Own WiFi Chips

January 27, 2023
Google Commits To Complying With EU Laws On Its Services

Google Commits To Complying With EU Laws On Its Services

January 27, 2023
Airtel Launches Its eSIM Technology In Nigeria

Airtel Launches Its eSIM Technology In Nigeria

January 27, 2023
In Spite Of The Sucess Of Genetically Modified Foods, Debates Abound

In Spite Of The Sucess Of Genetically Modified Foods, Debates Abound

January 27, 2023
How And How Not Gaming Can Be Used In Solving Real Problems

How And How Not Gaming Can Be Used In Solving Real Problems

January 27, 2023
  • About TechBooky
  • Submit Article
  • Advertise Here
  • Contact us
  • Privacy Policy
  • Disclaimer
  • Login

© 2021 Design By Tech Booky Elite

Generic selectors
Exact matches only
Search in title
Search in content
Post Type Selectors
  • Home
  • Africa
  • Business
  • Video
  • Metaverse
  • AI
  • Gadgets
  • Earnings
  • Tips

© 2021 Design By Tech Booky Elite