Huge Password Leak RockYou2024.txt with Billions of Plaintext Passwords Discovered

TapTechNews July 11th news, the cyber security company Cybernews published a blog post on July 4th and discovered the rockyou2024.txt file containing 9,948,575,739 plaintext information records, has been slated to become the largest password leak event in 2024.

The hacker with the online name ObamaCare posted on the dark web forum on July 4th and shared the rockyou2024.txt file containing nearly 10 billion plaintext passwords, adding approximately 1.5 billion new passwords on top of the RockYou2021 file (containing 8.4 billion plaintext passwords). TapTechNews attached relevant screenshots as follows:

Although this user registered at the end of May 2024, they had previously shared the employee database of the Simmons-Simmons law firm, the leads of the online casino AskGamblers, and the student application forms of Burlington County Rowan College.

It is said that among the 1.5 billion new passwords added this time, they come from 4000 huge databases, covering at least the past 20 years.

Researchers said:

In essence, RockYou2024 compiles the leaked privacy of individuals globally, meaning that attackers can use this data to launch attacks, greatly increasing the risk for users.

We have contacted the threat actor who released the data file and received approximately 30GB of combolists as proof and extracted the data. However, our research team has not conducted a thorough investigation of all the data sets.

Nonetheless, the researchers were still able to map the provided combolist to a portion of the RockYou dataset's values and achieved a 100% match.

Our purpose is to inform the public of potential risks, not to provide the data set to threat actors. Therefore, we cannot confirm or deny the claims of other hackers / researchers you mentioned.