A French researcher known only as Benkow has discovered a server in the Netherlands containing an unprecedented number of email addresses and passwords being used to send malware from legitimate sources – thereby avoiding spam filters.
The Ursnif banking malware is being delivered to inboxes worldwide with thousands of infections to date. Ursnif is a trojan that steals bank account numbers, credit card information, online passwords.
In a blog post, Troy Hunt wrote “The one (spam email list) I’m writing about today is 711m records which makes it the largest single set of data I’ve ever loaded into HIBP. Just for a sense of scale, that’s almost one address for every single man, woman and child in all of Europe.”
It is time to change passwords again friends.