We recently heard that a group called DerpTrolling had leaked thousands of PlayStation Network, 2K and Windows Live customer login details. As a result of the claims, Microsoft said in a statement that it was investigating the issue while Sony and 2K declined to comment. However, security experts believe that the leak may have been faked in part, if not completely.
In a Pastebin document, DerpTrolling said:
Dear Internet, the following is a very small portion of Lord Gaben and the rest of his crews glorious raids across the high seas of the Internet. Let this be a warning to all. Nothing is safe from Derp.
Rik Ferguson, Vice President of Security Research at Trend Micro, said:
Looking through the list, there’s certainly an awful lot of crossover with data from previous breaches, in particular the Adobe one. The random sample cross-referencing I have done certainly show that the majority of data listed here has shown up already in previous breaches with a very few exceptions which seem to appear only in this particular paste. The possibility exists that all this data comes from various new hacks of course, but on balance right now I’m coming down on the side of them having been culled and assembled from previously leaked data.
While it’s a relief to hear this, we still advise users to change their passwords.
[Source: CNET, The Guardian]