LulzSec has struck again, posting a collection of 62,000 passwords and emails on file hosting site MediaFire.
Web users have already taken some of the details to log onto others' email services, as well as access popular internet services.
One user bragged about using the details to access a dating website and switch profile pictures to lewd images. Another took screenshots of a Facebook profile they had hacked.
Confusion surrounds where the collection of emails and passwords came from. LulzSec itself admitted it was not sure.
"These are random assortments from a collection, so don't ask which site they're from or how old they are, because we have no idea," LulzSec said in a blurb for the email list.
"We also can't confirm what percentage still work, but be creative or something."
However, chief research officer at F-Secure, Mikko Hypponen, hypothesised the email lists had been taken from Writerspace.com a website for authors and communities of readers.
"Why Writerspace.com? Well, the most common passwords include these: mystery, bookworm, reader, romance, library, booklover and Writerspace," Hypponen said on Twitter.
"There are probably other sources for the passwords too, but Writerspace pretty much has to be one of them."
LulzSec also used the micro-blogging service to show its pleasure at having caused yet more havoc.
"Hope everyone enjoys that list. Good to see some refreshing carnage. We'll be back in a few hours, folks," the group said.
Today's release from LulzSec offered another sign the group is not letting up in its barrage of attacks.
Earlier this week, the collective posted details it claimed it took from the US Senate. Yesterday, LulzSec said it attacked the US CIA website with "a very simple packet flood."
-
AWS targets IT modernization gains with new agentic AI features in TransformNews New custom agents aim to speed up legacy code modernization and mainframe overhauls
-
HSBC partners with Mistral to fuel bank-wide generative AI adoptionNews The multi-year, strategic partnership will focus on transforming a range of services and tasks from customer-facing to fraud detection and more
-
Thousands of exposed civil servant passwords are up for grabs onlineNews While the password security failures are concerning, they pale in comparison to other nations
-
Gen Z has a cyber hygiene problemNews A new survey shows Gen Z is far less concerned about cybersecurity than older generations
-
Passwords are a problem: why device-bound passkeys can be the future of secure authenticationIndustry insights AI-driven cyberthreats demand a passwordless future…
-
LastPass just launched a tool to help security teams keep tabs on shadow IT risksNews Companies need to know what apps their employees are using, so LastPass made a browser extension to help
-
The NCSC wants you to start using password managers and passkeys – here’s how to choose the best options
News New guidance from the NCSC recommends using passkeys and password managers – but how can you choose the best option? ITPro has you covered.
-
I love magic links – why aren’t more services using them?Opinion Using magic links instead of passwords is safe and easy but they’re still infuriatingly underused by businesses
-
Password management startup Passbolt secures $8 million to shake up credential securityNews Password management startup Passbolt has secured $8 million in funding as part of a Series A investment round.
-
LastPass breach comes back to haunt users as hackers steal $12 million in cryptocurrencyNews The hackers behind the LastPass breach are on a rampage two years after their initial attack
