Google has become the latest company to suffer an embarrassing security breach when Russian hackers released the user name and passwords of five million Gmail users.
According to Russian technology blog Habrahabr, the compromised information was most likely gleaned via a combination of phishing expeditions and the use of weak passwords by Gmail users, rather than the compromise of Google hardware.
Researchers at Danish security specialists CSIS claim to have analysed the data and have suggested that some of it is up to three years old, based on correlations with past leaks. The account holders are mostly English, Russian, and Spanish.
A user going by the alias "tvskit" posted the archive file on Bitcoin security forum btcsec.com, claiming that more than 60 per cent of the credentials were valid. Similar databases of email addresses and passwords from popular Russian language email services Yandex and Mail.ru were published earlier this week.
The breach is serious because the Gmail password might unlock access to a range of Google features, including Google's Drive cloud service and even the mobile payment system, Google Wallet.
Users concerned that they may have had their Gmail passwords leaked can check its status on "Is my email leaked". Gmail users have also been advised to change their passwords as a precaution.
Security experts have also advised that users should adopt two-factor authentication using their mobile phone numbers - if they feel comfortable giving information giant Google what is effectively a personal serial number to add to its database.
This article has been extracted from http://www.computing.co.uk/, please click on this link to read the article in full http://www.computing.co.uk/ctg/news/2364665/google-gmail-users-told-to-change-passwords-after-five-million-accounts-were-compromised
Montash is a multi-award winning, global technology recruitment firm. Specialising in permanent and contract positions across mid-senior appointments which cover a wide range of industry sectors and IT functions, including:
ERP, BI & Data, Information Security, IT Architecture & Strategy, Energy Technologies, Demand IT and Business Engagement, Digital and E-commerce, Infrastructure and Service Delivery, Project and Programme Delivery.
With offices based in London, Montash has completed assignments in over 30 countries and has appointed technical professionals from board level to senior and mid-management in permanent and contract roles.