Keep up with the news by installing RT’s extension for . Never miss a story with this clean and simple app that delivers the latest headlines to you.


2 million passwords for Facebook, Twitter and Google posted online

Published time: December 04, 2013 21:53
Edited time: December 05, 2013 04:26
AFP Photo / Shah Marai

AFP Photo / Shah Marai

Over 2 million passwords for popular social networking sites such as Facebook and Twitter, as well as Google and Yahoo accounts have been stolen and posted online, with Russian social networks VKontakte and Odnoklassniki also featuring on the hitlist.

Internet security firm Trustwave exposed the extensive data hoard, saying in its blog that the responsible botnet – dubbed Pony – had harvested information from thousands of vulnerable computers on a global scale. The information included login credentials, email addresses and passwords.

In total, 1,580,000 website login credentials were stolen, alongside 320,000 email and 41,000 FTP accounts.

“Most of the compromised web log-ins belong to popular websites and services such as Facebook, Google, Yahoo, Twitter, LinkedIn, etc.,” stated the blogpost, adding that the presence of both and, “probably indicates that a decent portion of the victims comprised were Russian speakers.” 

Image courtesy of Trustwave spiderlabs

Facebook has stated that no security breach of their system had taken place, putting the blame on particular users who failed to ensure their own security. “It appears that people's computers may have been attacked by hackers using malware to scrape information directly from their web browsers,” a Facebook spokesperson told the BBC. They went on to highlight how to circumvent such incidents with Facebook, e.g. by activating Login approvals and notifications. 

Twitter also responded to the news, telling HuffPo that they “immediately reset the passwords of the affected accounts.”

Analyzing the newly leaked accounts, the Trustwave team found that the top ten most commonly used passwords comprise 2.4 percent of the total count, exposing that people tend to choose ease of access over security for their accounts.

The most frequently stolen passwords are unsurprisingly the weakest one, with the most popular being “123456.” In second was “123456789,” then “1234” and then “password.” 

Security researcher, Graham Cluley, told the BBC that “30-40% of people use the same passwords on different websites… that's certainly something people shouldn't do.”

Comments (16)


漢陰陽 02.01.2014 09:38

annie ross 06.12.2013 20:32

these hackers need an actual life


do you have a life, are you any better?


annie ross 06.12.2013 20:32

These hackers need a life.. A actual life


Mike Andrew 05.12.2013 23:41

Right. Facebook always denies security breach. They should live in the real world for once, and accept it as truth

View all comments (16)
Add comment

Authorization required for adding comments

Register or



Show password


or Register

Request a new password


or Register

To complete a registration check
your Email:


or Register

A password has been sent to your email address

Edit profile



New password

Retype new password

Current password



Follow us