According to NordLocker, its specialists have discovered a publicly available database with personal information about many users worldwide. It includes information about email addresses, user accounts in popular social networks and services (Facebook, Twitter, Instagram, Vkontakte, Apple, Google, Steam, PayPal, etc.), and even cookies. In addition, in this database, you can find photos from web cameras, screenshots of screens, files from the folders “Desktop” and “Downloads.” The total volume of the database is 1.2 TB.
This database was collected using a virus of unknown origin. Between 2018 and 2020, this virus infected about 3.25 million Windows computers. The cybercriminals spread the virus through spam mailings, unlicensed distributions (Adobe Photoshop 2018, various games), and Windows hacking tools. After infecting the system, the virus assigned unique identifiers to each stolen data set, which made it easy to sort information by the source device.
During its activity, the malware was able to steal about 26 million sets of data for authorization on websites for 1.1 million unique email addresses, more than 2 billion cookies, and about 6.6 million other files. Users can check if they are the victim of an attack using the Have I Been Pwned service.
A source: NordLocker