Collection # 1: 2.7 billion hacked accounts in an archive

Thursday, Jan. 17, Troy Hunt, known for being the founder of the website Have I been Pwned?, Said an archive with nearly 2.7 billion identifiers has appeared on the web. This brings together data from some 12,000 hacks.

Collection 231%
© Troy Hunt

The numbers are enough to make you dizzy. On a hacking forum, Troy Hunt discovered through links a link pointing to an 87 GB archive hosted on Mega (since removed). In this archive, the founder and manager of the famous website Have I Been Pwned? has counted no less than 2,692,818,238 lines for as many identifiers. After cross-checking, the archive contains a whopping 1.16 billion unique pairs of email addresses and passwords. There are nearly 773 million distinct addresses and over 21 million different passwords.

Decomposed in some 12,000 files, this loot is not the result of a single piracy. This is obviously a collection of data stolen from as many intrusions, the name of the sites being indicated in the title of the files. The source folder is also called "Collection # 1", name that was taken by Troy Hunt to designate his find. According to the expert's observations, the oldest piracy present in this astonishing database dates back to 2008. Overall, many leaks are already known, but this is not the case for all. Of the 773 million addresses affected, 140 million had not yet been counted by Have I Been Pwned? as having already been hacked. Similarly, of the 21 million passwords disclosed, only half were already known to the battalion and considered compromised.

Given this, Troy Hunt has of course added this data to the base of his service. So, to know if an address is part of the lot, just make a hook by Have I Been Pwned? (or to use the Firefox Monitor service, which relies on the same basis). Naturally, those who have registered to receive notifications have received or will receive shortly, if necessary, a message informing them that their address has been disclosed.

For now, the man does not seem to have spotted particularly massive piracy that would have gone under the radars - or has, in any case, not communicated on this subject.