Detected files with 42 million data published in Kayo.moe

Posted date 17/09/2018

Security researcher Troy Hunt reported the upload of a large database to Kayo.moe servers. The data is not related to any security breach of these servers, it is also believed that by the format of the same, they are intended for the automatic filling of credentials to try to hijack user accounts.

The uploaded data, consisting of 755 files with a total of 1.8 GB in size, contain email addresses, plain text passwords and partial credit card info.

After analyzing the file collection, the security researcher discovered that they contained almost 42 million unique records, with around 93% of them already included in haveibeenpwned.com database.