Posted on August 5, 2014 at 6:47 PM
Tuesday, Aug 5 at 6:52 PM
(USAToday)-- Security researchers say a Russian crime ring has pulled off the largest known theft of confidential Internet information including 1.2 billion username and password combinations and more than 500 million email addresses.
The cyber gang injected malicious code to steal databases from at least 420,000 websites, says Alex Holden, founder and chief information security officer for Hold Security in Milwaukee, Wisc.
"It is absolutely the largest breach we've very encountered," Holden said Tuesday.
Most unsettling, he said, was finding his own credentials among the compromised data.
Hold Security cyber sleuths have been monitoring the cyber gang for about seven months, but only recently realized the magnitude of the gang's operation, Holden said.
"We thought at first they were run-of-the-mill spammers," he said. "But they got very good at stealing these databases."
Holden won't identify the gang, but he says his investigators know their names and locations.
"The perpetrators are in Russia so not much can be done. These people are outside the law," he said.
Hold Security is trying to contact the victims, but most of the websites remain vulnerable.
The New York Times first reported the breach on Tuesday.
Word comes as hundreds of the world's computer security professionals gather in Las Vegas for Black Hat, a major computer security conference.
While the breach appears to be large, it's still hard to say if it's the biggest that's ever been discovered, said Marc Maiffret, the chief technical officer at BeyondTrust, a Pheonix, Arizona-based computer security company. "There's always lots of changes when the dust settles, it takes months to know" how important a breach was," he said.
If a cache of passwords this big has been found, others likely exist. "I would absolutely assume there are others," said Maiffret.
The cache of credentials was created by taking advantage of the two most common types of hacking —attacking web sites to gain access to underlying databases of customer information, as well as going after individuals and "everyday email," said Maiffret.
"The interesting thing is they were bridging the two, it's really a perfect storm" of an attack , he said.
The size of the operation shouldn't come as a surprise to anyone, Maiffret said. "In the past, when people thought of hacking, they thought of a lone teen-aged hacker sitting in the basement," he said. "But people need to realize that most hacking today is related to organized crime."