Hacking the hackers (aka what goes around, comes around)

Even hackers can be hacked!  Isn’t that serendipitous?

There is a website, Cit0Day.in, which hosts 23,000 hacked databases.  Access is available at a cost, daily or monthly subscription. Hackers mine this data for passwords and other information.  They then use this data to crack open accounts of higher value.

Its ironic then, that the site itself has now been breached.

The bad news is that, if your data was stolen, it is now even MORE accessible to more hackers and criminals.

That’s because the databases have been posted into public forums giving free access to anyone.

You need blended protection to protect yourself against this sort of risk. There are 4 important steps:

  1. Every login should have unique complex passwords. That is almost impossible to do, with out a password manager.
  2. Use MFA whenever its available.
  3. Change passwords regularly (easier to do with a password manager)
  4. Make sure you are doing the first three steps.

A password manager is something like our KARE Password Vault.  Contact your account manager for more information about securing passwords.

Reference : https://www.zdnet.com/article/23600-hacked-databases-have-leaked-from-a-defunct-data-breach-index-site/