As a warning shot, DerpTrolling posted a Pastebin of over 5,000 different emails and passwords, accompanied by the message that “nothing is safe.”
The document above shows usernames and passwords of the victims; 2,131 PSN users, 1,473 Windows Live users and 2000 2K Game users. It does not show any credit card data.
According to CNET, a DerpTrolling member said that the group decided to change tactics after they found themselves not seen as a serious threat.
“We were advised by one of our friends over at RedHack to make adjustments in our operations. A show of force from us, would be an attack on 2K that would be very similar to our attacks on Blizzard. Like I said, DerpTrolling in no way wants to harm our children by leaking such damaging data. It’s only a warning to the companies.”
It’s easy to check up to see if you may be one of the many affected by the attack by utilizing CTRL+F and finding your email or password.
“We have 800,000 from 2K and 500,000 credit card data. In all of our raids we have a total of around 7 million usernames and passwords. We have around 2 million Comcast accounts, 620,000 Twitter accounts, 1.2 million credentials belonging to the CIA domain, 200,000 Windows Live accounts, 3 million Facebook, 1.7 million EA origins accounts, etc.”
Furthermore, the member claimed told CNET that DerpTrolling is behind some of the most famous hackings in the past few years, touting their achievements.
“You heard about Anonymous knocking the entire .Mil domain offline? Well that was us! You hear of RedHack launching DDoS attacks against Turkey’s government? That was us as well! You heard about LulzSec knocking gaming servers and websites offline? Well that was us too! And that was us who knocked Syria’s internet offline earlier this year. DerpTrolling really has many forms, most people only see the Gaming side of us! We can be very serious hackers.”
Bitcoin may still be in the early stages, but stealing information doesn’t work the same way in this financial realm. Someone can’t take your public key and pull from your account; they need the private key as well. Now that multi-signature accounts are gaining popularity, it’s getting harder and hard to steal sensitive financial information.
It’s expected that all companies affected will review their data and try to implement stronger security measures, but CCN advises anyone with a mere inkling of fraud should change their passwords, notify their credit card companies and banks. They should also take a look at the security measures taken by digital currency users and try to work them into their personal lives.
Images from Shutterstock.
Last modified (UTC): November 22, 2014 00:36