Posts

Showing posts from February, 2021

20 Most Common Passwords Found On The Dark Web

Image
Based on the top 250 passwords they discovered on the dark web, ID Agent said the most common categories used to generate those passwords include sequential strings of numbers, names, sports references, famous people or characters, and more. Fifty-nine percent of Americans use a person’s name or birthday in their passwords, while 33% include a pet’s name and 22% use their own name, the company said. The average user also reused their bad password 14 times. Here’s a look at the top 20 passwords found on the dark web in 2020: 123456 password 12345678 12341234 1asdasdasdasd Qwerty123 Password1 123456789 Qwerty1 :12345678secret Abc123 111111 stratfor lemonfish sunshine 123123123 1234567890 Password123 123123 1234567 The analysis also identified the most common words used within various categories of passwords. For instance, it found that “maggie” was the most common name among the top 250 passwords on the dark web. Sports lovers like to include the word “baseball” most often in their passw

Pro-India hackers use Android spyware to spy on Pakistani military

Image
  Image © to bleeping computer This week a report has revealed details on two Android spyware strains leveraged by state-sponsored threat actors during the India-Pakistan conflict. The malware strains named Hornbill and SunBird have been delivered as fake Android apps (APKs) by the Confucius advanced persistent threat group (APT), a pro-India state-sponsored operation known to spy on Pakistani and South Asian targets, since at least 2013. Although Confucius has created Windows malware in the past, the group has extended its capabilities to mobile malware since 2017 when the spying app ChatSpy came into existence. The apps used by the group contain advanced capabilities including taking photos from the camera, requesting elevated privileges, scraping WhatsApp messages, and uploading all this information to the servers of the APT group. Spies on Pakistan’s military, nuclear facilities via fake apps A report from California-based cybersecurity firm Lookout has revealed counterfeit Android