Teacher
Professional
- Messages
- 2,670
- Reaction score
- 814
- Points
- 113
Users of Roblox and OpenAI services were particularly affected.
Kaspersky Lab has discovered that in three years, hackers stole more than 36 million pairs of usernames and passwords* from various services related to artificial intelligence and gaming accounts.
In the period from 2021 to 2023, data from the following platforms was compromised and posted on shadow and other specialized sites: 34 million pairs of Roblox players ' logins and passwords, 688 thousand bundles of logins and passwords from accounts in OpenAI services, about 1.2 million user accounts of the Canva graphic design tool, and 839 thousand pairs of logins and passwords from the Grammarly service for checking grammar when writing texts in English.
Experts believe that the data leak occurred as a result of attacks using malicious software-stylers designed to steal passwords. They can infect both personal devices and company computers via phishing emails or malicious websites.
Stolen credentials are actively sold on the shadow market. Often, hackers steal accounts from different platforms, and then resell them to those who use this information for other criminal schemes.
A particularly sharp increase in profile compromise was observed in OpenAI services, including ChatGPT. In 2023, the number of compromised accounts increased by about 33 times compared to 2022 - up to almost 664 thousand. The peak demand for ChatGPT accounts occurred in March last year, after the release of the fourth version of the chatbot.
Number of compromised usernames and passwords of OpenAI service users in 2021-2023
The number of compromised accounts on the Roblox platform is also growing rapidly. Over the past three years, it has grown by 231% — from 4 million 700 thousand in 2021 to 15.5 million in 2023. Experts also analyzed ads about compromised accounts on 11 of the most popular gaming platforms, including Twitch, Electronic Arts, Sony PlayStation, and Steam. On average, the number of compromised accounts for each of these platforms has increased by 112% since 2021.
In the short term, analysts predict continued demand for compromised accounts on the part of attackers. This dictates the need for reliable protection against cyber threats for both companies and private users.
* Statistics may include duplicates, as the same credentials may have been compromised several times and re-posted on the dark web
Kaspersky Lab has discovered that in three years, hackers stole more than 36 million pairs of usernames and passwords* from various services related to artificial intelligence and gaming accounts.
In the period from 2021 to 2023, data from the following platforms was compromised and posted on shadow and other specialized sites: 34 million pairs of Roblox players ' logins and passwords, 688 thousand bundles of logins and passwords from accounts in OpenAI services, about 1.2 million user accounts of the Canva graphic design tool, and 839 thousand pairs of logins and passwords from the Grammarly service for checking grammar when writing texts in English.
Experts believe that the data leak occurred as a result of attacks using malicious software-stylers designed to steal passwords. They can infect both personal devices and company computers via phishing emails or malicious websites.
Stolen credentials are actively sold on the shadow market. Often, hackers steal accounts from different platforms, and then resell them to those who use this information for other criminal schemes.
A particularly sharp increase in profile compromise was observed in OpenAI services, including ChatGPT. In 2023, the number of compromised accounts increased by about 33 times compared to 2022 - up to almost 664 thousand. The peak demand for ChatGPT accounts occurred in March last year, after the release of the fourth version of the chatbot.
Number of compromised usernames and passwords of OpenAI service users in 2021-2023
The number of compromised accounts on the Roblox platform is also growing rapidly. Over the past three years, it has grown by 231% — from 4 million 700 thousand in 2021 to 15.5 million in 2023. Experts also analyzed ads about compromised accounts on 11 of the most popular gaming platforms, including Twitch, Electronic Arts, Sony PlayStation, and Steam. On average, the number of compromised accounts for each of these platforms has increased by 112% since 2021.
In the short term, analysts predict continued demand for compromised accounts on the part of attackers. This dictates the need for reliable protection against cyber threats for both companies and private users.
* Statistics may include duplicates, as the same credentials may have been compromised several times and re-posted on the dark web