"Cybersecurity researchers planted phoney passwords on the web. They found that attackers were extremely quick to test if usernames and passwords worked... Half of accounts compromised in phishing attacks are manually accessed within 12 hours of the username and password being leaked... The false credentials – seeded over the course of six months – were designed to look like compromised logins for well-known cloud software applications..." https://www.zdnet.com/article/this-...ked-on-the-web-will-be-tested-out-by-hackers/
TEN YEARS OF BREACHES IN ONE IMAGE Nearly 8 billion usernames have leaked since June 2011 https://www.theverge.com/22518557/data-breach-infographic-leaked-passwords-have-i-been-pwned And does anyone believe there were 8 billion compromised users? I think not. We keep seeing these huge numbers and the implications of their disclosure, but honestly, how worried would you be if your details gathered at some trivial website - or security forum - were revealed?
