Telegram Combolists and 361m Email Addresses: A Growing Cybersecurity Threat

Author

Reads 286

Three People Hacking a Computer System
Credit: pexels.com, Three People Hacking a Computer System

A large cache of Telegram combolists and 361 million email addresses has been discovered, posing a significant threat to cybersecurity.

This is not an isolated incident, as combolists have been on the rise in recent years, with hackers using them to gain unauthorized access to sensitive information.

The sheer scale of the email addresses involved is staggering, with 361 million records compromised.

These email addresses can be used for phishing attacks, spamming, and other malicious activities, putting users at risk of identity theft and financial loss.

What Is a Combolist?

A combolist is a compilation of email addresses and corresponding passwords that have been gathered, often illicitly, from various data breaches, credential stuffing attacks, and other hacking activities.

These lists are typically used by cybercriminals to attempt to access accounts by trying these combinations across multiple services.

These combinations are crucial for authenticating access to various services, and attackers frequently use them to conduct "credential stuffing" attacks, where they attempt to access multiple accounts en masse using the lists.

The data in these combolists can be massive, with some files containing tens of millions of rows and others being several gigabytes in size.

For instance, one file begins with a record that appears to have been intercepted when an individual attempted to log in to Nike.

Telegram Combolists

Three People Hacking a Computer System
Credit: pexels.com, Three People Hacking a Computer System

Telegram combolists are a type of data breach that contains combinations of email addresses or usernames and passwords.

These combinations are used to authenticate to various services, making it easy for attackers to mount "credential stuffing" attacks.

Many data breaches have been distributed via Telegram channels, making it a breeding ground for data breaches.

According to Troy Hunt, the data posted to Telegram often appears as "combolists", which are used in credential stuffing attacks to gain unauthorized access to accounts.

Cybersecurity experts have gathered these credentials from various Telegram cybercrime channels, where such stolen data is frequently leaked to enhance the reputation and subscriber count of the channels.

The data collected from Telegram channels varied widely in size, with some files containing tens of millions of rows.

The largest files appeared to be the result of info stealer malware, capturing credentials as they were entered into websites on compromised machines.

Hunt verified the data's legitimacy by contacting HIBP subscribers and confirming the accuracy of the stolen credentials.

Subscribers recognized old and previously exposed passwords, as well as new and previously unseen data, underscoring the data's legitimacy and the ongoing threat of credential theft.

Implications & Safety Tips

Credit: youtube.com, Fortifying Your Telegram: Best Practices for Secure Communication

The implications of the Telegram combolist breach are far-reaching, with 361 million email addresses stolen. This is a significant threat to users, as credential stuffing attacks can leverage these combolists to access accounts en masse.

Websites like Nike and Footlocker have confirmed the presence of email addresses listed in the stolen data, indicating the widespread impact of this breach.

To protect yourself, change passwords for all accounts, especially those using the same credentials across multiple services. This is a crucial step in securing your online presence.

Using a good password manager to generate and store complex passwords is also a great idea. This will help you keep track of your passwords and make it harder for attackers to gain access to your accounts.

Enabling two-factor authentication (2FA) where possible can add an extra layer of security to your accounts. This will make it much harder for attackers to access your accounts, even if they have your password.

Regularly checking your accounts for unusual activity and enabling alerts for unauthorized access attempts can also help you detect and prevent potential breaches.

Telegram Linked to Data Breaches

Credit: youtube.com, How to Recover a Telegram Account | 6 Hacking Recovery OSINT Tools | Telegram Hacked

Telegram is a popular messaging platform that's become a breeding ground for data breaches.

Many breaches I've loaded into HIBP have been distributed via Telegram, making it easy to publish this type of data.

The data posted to Telegram often appears as "combolists", which are combinations of email addresses or usernames and passwords.

These combinations are used to authenticate to various services, and attackers often use these lists to mount "credential stuffing" attacks.

According to cybersecurity experts, credentials from various Telegram cybercrime channels have been gathered, where stolen data is frequently leaked to enhance the reputation and subscriber count of the channels.

The data sent to me last week was sourced from 518 different channels and amounted to 1,748 separate files.

Some of the files have no data, while others are many gigabytes with many tens of millions of rows.

The leak of 361 million unique email credentials on Telegram channels is a significant data breach, with 151 million previously unseen addresses now loaded into HIBP.

This incident underscores the importance of robust cybersecurity measures and the need for users to remain vigilant about their online credentials.

Dwayne Zboncak-Farrell

Senior Assigning Editor

Dwayne Zboncak-Farrell is a seasoned Assigning Editor with a keen eye for compelling content. With a strong background in research and writing, Dwayne has honed his skills in guiding projects from concept to completion. Their expertise spans a wide range of topics, including technology and software.

Love What You Read? Stay Updated!

Join our community for insights, tips, and more.