FBI Works With Have I Been Pwned to Notify Emotet Victims

  /     /     /  
Publicated : 23/11/2024   Category : security

FBI Works With Have I Been Pwned to Notify Emotet Victims


Officials shared 4.3 million email addresses with the HIBP website to help inform companies and individuals if Emotet compromised their accounts.


The FBI is working with data breach notification service Have I Been Pwned (HIBP) to help notify people and businesses if their accounts were affected by the Emotet botnet, the site reports.
Earlier this year, law enforcement officials around the world conducted an operation 
to seize control of
 Emotets infrastructure. Following the takedown, the FBI contacted HIBP to see whether the service might be an effective means of alerting affected individuals and companies, according to a blog post by HIBP creator Troy Hunt.
As part of this collaboration, the FBI shared more than 4.3 million email addresses, spanning a range of countries and domains, which came from two sources of data the FBI obtained during the takedown. These include email credentials that Emotet stores for sending spam via email service providers and Web credentials from browsers that had stored them to accelerate logins. Given their remediation is similar, both have been categorized as a single breach in HIBP, Hunt says.
The incident has been flagged as sensitive, meaning it cannot be publicly searched. People will either need to verify they own their address through the notification service or do a domain search to see whether theyre affected.
Those who have been affected are advised to change their email account password, as well as passwords and security questions for accounts stored in their inbox or browser. Hunt recommends keeping security software up to date.
Hunt points out this isnt the first time law enforcement has used HIBP. Back in 2018, the Cybercrime Bureau of the Estonian Central Criminal Police used the service to alert people affected by several different breaches.
Read Troy Hunts 
full blog post
 for more details.

Last News

▸ ArcSight prepares for future at user conference post HP acquisition. ◂
Discovered: 07/01/2025
Category: security
▸ Samsung Epic 4G: First To Use Media Hub ◂
Discovered: 07/01/2025
Category: security
▸ Many third-party software fails security tests ◂
Discovered: 07/01/2025
Category: security


Cyber Security Categories
Google Dorks Database
 		Exploits Vulnerability
 		Exploit Shellcodes

CVE List
 		Tools/Apps
 		News/Aarticles

Phishing Database
 		Deepfake Detection
 		Trends/Statistics & Live Infos



Tags:
FBI Works With Have I Been Pwned to Notify Emotet Victims