VerticalScope.com, a company that runs multiple support forums on various topics, has suffered a massive data breach in February 2016 when a hacker managed to steal over 45 million user records from its database.
The records, which data breach indexing site LeakedSource has managed to acquire and analyze, contain details from over 1,100 tech support portals VerticalScope is running on different domains.
LeakedSource says the biggest data troves are from sites such as Techsupportforum.com, MobileCampsites.com, Pbnation.com, and Motorcycle.com.
There are no clues on who was behind the data breach, but LeakedSource says the incident took place in February 2016. VerticalScope confirmed the breach, after LeakedSource's staff got ahold of the data on April 27.
Leaked data contains easy-to-crack MD5-hashed passwords
LeakedSource says that for each record they found an email address, a username, an IP address, one or two passwords. Not all records contain all the details for each user.
"Given the massive scale of this breach, it is also likely that VerticalScope stored all of their data on interconnected or even the same servers as there is no other way to explain a theft on such a large scale," a LeakedSource representative explained.
The bad news doesn't stop here for VerticalScope users, and it appears that from LeakedSource's analysis of the leaked passwords, around 90 percent (over 40 million) were protected with the MD5 hashing algorithm. MD5 is vulnerable to simple collision attacks, and passwords hashed with MD5 are easy to break.
The MD5 passwords were also salted. The rest of the passwords were stored using various encryption algorithms, some of which are hard to break and considered safe to use.
Below is a table with the most used passwords. The uniqueness of some of the passwords reveals the presence of many bots or fake users.
Rank | Password | Frequency |
---|---|---|
1 | 123456 | 150,852 |
2 | 18atcskd2w | 91,103 |
3 | password | 83,862 |
4 | 3rjs1la7qe | 74,806 |
5 | indya123 | 62,453 |
6 | q0tsrbv488 | 62,308 |
7 | india123 | 62,296 |
8 | 110110jp | 57,746 |
9 | sojdlg123aljg | 52,406 |
10 | thegreat123 | 49,068 |
11 | 123456789 | 42,073 |
12 | pass1478 | 39,962 |
13 | d1lakiss | 33,177 |
14 | 111111 | 29,850 |
15 | qwerty | 25,059 |
16 | yagjecc826 | 21,975 |
17 | rjgo7we138 | 21,492 |
18 | 12345678 | 20,703 |
19 | mustang | 20,600 |
20 | g9l2d1fzpy | 19,842 |
21 | megasecret | 16,834 |
22 | 2h7vkzo266 | 15,945 |
23 | ektuhi1234 | 15,917 |
24 | r9lw4j8khx | 15,188 |
25 | tester01 | 14,966 |