Internet users in Vietnam urged to change passwords after huge database leak

By Chau An   December 27, 2017 | 01:39 am PT
Internet users in Vietnam urged to change passwords after huge database leak
User information from the world’s largest online business network LinkedIn has been found in plain text online. Photo by Reuters
The leaked database includes accounts linked to the government and important Vietnamese businesses. 

A computer emergency response center in Vietnam is urging local internet users to change their email and social media passwords after a huge database of unencrypted user credentials was discovered online.

Security experts found the 41-gigabyte archive containing over 1.4 billion email addresses, passwords and other credentials in plain text on the Dark Web early this month.

At least 437,664 accounts in the database have been identified as belonging to users in Vietnam, including 930 government accounts and many important Vietnamese businesses, the Vietnam Computer Emergency Response Team (VNCERT) under the information ministry said in a warning on Monday.

The accounts were leaked from various social networks and online service sites, including the popular LinkedIn, MySpace and Netflix, it said.

The file is not the result of a new data breach, but a collection of several past breaches collated into a single database which was updated at the end of November.

The archive includes some of the commonly used weak passwords such as “123456,” “123456789,” “password,” and “111111”.

None of the passwords were encrypted, the California-based identity threat intelligence company 4iQ, which discovered the database, said in an online post.

It said the “scary” part is that it has tested a subset of these passwords and most of them have been verified as true.

It is still unclear who is behind the collection, but VNCERT said the breach could lead to data theft and destruction, and recommended users to use strong passwords and change them regularly.

go to top