(Ping! Zine Web Tech Magazine) – On Tuesday, and archive of over 5 million Gmail addresses and passwords was posted to the online forum btcsec.com. The data is old and was contained from several past security breaches.
A forum user witht he online alias “tvskit” posted the file on btsec.com, a Bitcoin security forum and claimed that over 60% of the information found inside the file are valid.
According to PC World, chief technology officer of CSIS Security Group, Peter Kruse commented “We can’t confirm that it is indeed as much as 60 percent, but a great amount of the leaked data is legitimate.”
CSIS reportedly analyzed the data contained in the achived file and concluded that the information contained within was up to 3 years old, based on correlations with previous data leaks.
Kruse also noted that the data “did not likely come from Gmail directly”, but instead from various other sources where users used their Gmail account information for loging into other sites.
According to PC World, a Google representative commented in an email, “The security of our users is of paramount importance to us. We have no evidence that our systems have been compromised, but whenever we become aware that an account has been compromised, we take steps to help our users secure their accounts.”
No matter where the leaked information originated, users are strongly urged to change their passwords on all websites, including Gmail, where they used their Gmail address as the login user name.