German Authorities Uncover Stash of 18 Million Stolen Account Credentials

Germany's BSI investigates theft of 18 million credential sets

Police in the German city of Verden say they’ve identified a stash of 18 million email addresses and associated passwords. The news comes just months after German authorities discovered 16 million credential sets stolen by cybercriminals.

According to Der Spiegel (report in German), it’s believed that at least three million of the 18 million usernames and passwords belong to users from Germany. The number could be higher since many of them are .com addresses whose origin is more difficult to determine.

Unlike the previous incident, when many of the passwords were outdated, this time the data appears to be fresh. Verden authorities have notified the country’s Federal Office for Information Security (BSI) of their findings.

Der Spiegel has conducted an analysis of the incident and has determined that this latest incident could be connected to the one in which 16 million credentials were found.

In January, after the 16 million email addresses and passwords were uncovered, the BSI set up a new service in collaboration with Deutsche Telekom, Avira and other organizations to help users determine if their credentials were compromised.

It remains to be seen if the BSI launches a new website or updates the old one to include the newly uncovered information.


Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s