This is the headline you're seeing as this is the volume of data that has now been loaded into Have I Been Pwned (HIBP). The unique email addresses totalled 772,904,991. (I found a combination of different delimiter types including colons, semicolons, spaces and indeed a combination of different file types such as delimited text files, files containing SQL statements and other compressed archives.) This also includes some junk because hackers being hackers, they don't always neatly format their data dumps into an easily consumable fashion. This is when treating the password as case sensitive but the email address as not case sensitive. In total, there are 1,160,253,228 unique combinations of email addresses and passwords. (And yes, fellow techies, that's a sizeable amount more than a 32-bit integer can hold.) It's made up of many different individual data breaches from literally thousands of different sources. Collection #1 is a set of email addresses and passwords totalling 2,692,818,238 rows. Let's start with the raw numbers because that's the headline, then I'll drill down into where it's from and what it's composed of. Most of them won't have a tech background or be familiar with the concept of credential stuffing so I'm going to write this post for the masses and link out to more detailed material for those who want to go deeper. Many people will land on this page after learning that their email address has appeared in a data breach I've called "Collection #1".
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |