Russians hackers are selling the email addresses and passwords of top UK politicians and diplomats. The login credentials of thousands of British politicians, ambassadors and other top officials are getting traded on the dark net, The Times reports. Even though the data is old and in some ways past its sell-by date, it still presents a potential problem.
An investigation by the paper found two massive lists of stolen credentials were put up for sale or traded on Russian-speaking hacking sites. The cache included the log-in details of 1,000 British MPs and parliamentary staff, 7,000 police employees and over 1,000 Foreign Office officials.
The purported details include key members of Parliament such as education secretary Justine Greening and business secretary Greg Clark.
This might sound bad, but security watchers reckon the trade largely covers old or otherwise depreciated credentials, minimising the potential for harm.
Pete Banham, cyber resilience expert at Mimecast, commented: “This latest password cache appears to be recycled from old breaches. It is however a prime example of how important it is for individuals, especially those in a position of political power right now, to take more responsibility for password strength and reuse between consumer and business services.