Home » Case of the published password list attack (account list attack)

Case of the published password list attack (account list attack)jamhelper

The damage case by list-type attack of japan

even if you countermeasure to password encryption and vulnerability, it leads to an information leak by the attack on the ID / PW that was leaked from the other websites.

The following is the damage situation of the published list attacks since April 2013.

Date Company Service Bad Login Impact
Trial Intrusion
3/3/2016 BICCAMERA INC. BICCAMERA.COM Unauthorized exchange of points
9/28/2015 Toysrus Toysrus online store Unauthorized orders
8/6/2015 Washington Hotel net-point.jp 123 Personal information, reservation information and the stay history is referenced, In addition to the unauthorized exchange to the Amazon gift certificates
8/4/2015 J-YADO Ltd. J-YADO 18,592 E-mail address and password outflow
7/28/2015 Orient Corporation Membership Website “e-Orico” 165 Unauthorized exchange of points
7/21/2015 TAMIYA INC. TAMIYA SHOP ONLINE MAX 102,891 likelihood of outflow of the personal information, ID and password (encryption)
7/17/2015 Shobunsha Publications, Inc. MAPPLE Travel 8,800 E-mail:about 8,800
PW:about 8,400
7/16/2015 Dinos Cecile cecile online shop 151 Illegal orders 10 people 1,615,423 yen
3,556,972 yen damage
Information falsification 14 people
7/6/2015 Lifemedia Inc. Lifemedia 30,001 There is a possibility that personal information was browsed and point unauthorized exchange (25 cases)
12/24/2014 Kyuden Infocom Company,Inc. hearcon 3,161,872 1,320 Point is incorrect exchange (291)
12/23/2014 mixi, Inc. Morappo 19,600,000 4,536 There is a possibility that personal information was browsed and point unauthorized use (332 cases / total damage 435,025 yen)
11/10/2014 MARSH Co.,Ltd. D STYLE WEB 108,185 There is a possibility that personal information was browsed and the rogue point exchange (47 cases)
9/30/2014 NTT DOCOMO, INC. docomo ID portal website 6,072 There is a possibility that personal information was browsed
9/29/2014 Sagawa Express Membership Web service 34,161 There is a possibility that personal information was browsed
9/26/2014 Yamato Transport Co., Ltd. Kuroneko Members 190,000 10,589 possibility of browsed of the personal information
9/8/2014 RECRUIT LIFESTYLE CO., LTD. Ponpare Mall 31,660 9,749 There is a possibility that personal information and reservation was browsed
8/18/2014 JR East Suica Point Club 300,000 756 There is a possibility that personal was browsed
8/13/2014 Ryohin Keikaku Co., Ltd. MUJI net store 4,220,382 20,957 There is a possibility that personal information and The point was viewed
7/9/2014 SMILE-LAB Co., Ltd. Nicotto Town 4,748 There is a possibility that personal information and the balance of virtual currency was viewed
7/4/2014 IID, Inc. anpara 3,420,000 15,092 There is a possibility that personal information was viewed and point unauthorized use (60 peoples)
6/30/2014 BANDAI NAMCO Entertainment Inc. BANDAI NAMCO ID 1,796,629 14,399 It has been illegally logged
6/26/2014 PLUG-Inc. CAPAT 11,502 there is a possibility that a point was exchanged for a gift certificate (203 cases).
6/23/2014 Cyber ​​Agent Ameba blog 2,293,543 38,280 There is a possibility that personal information was viewed
6/20/2014 Hatena Co., Ltd. Hatena Bookmark 1,600,000 2398 The personal information was changed and a point was exchanged for a gift certificate (3 cases)
6/17/2014 mixi, Inc. mixi 4,300,000 263596 It has been illegally logged
6/13/2014 DWANGO Co.,Ltd. Nico Nico Douga 3,551,370 295,109 There is a possibility that personal information was referenced, and a point was illegally used (23 people)
6/12/2014 LINE LINE 657 A message was camouflaged and money was requested.
6/2/2014 Rakuten, Inc. Rakuten Download Illegally game was purchased
5/9/2014 JACCS Co.,Ltd. INTERCOM Club There is a possibility that a point was exchanged for a gift certificate
5/2/2014 Sony Marketing (Japan) Inc. Sony Store 275 Point was exchanged for a gift certificate (753,000 yen, 275cases)
4/30/2014 SoftBank Corp. My SoftBank 724 There is a possibility that the personal information was referenced, and illegally contents was purchased
4/23/2014 Panasonic CLUB Panasonic 4,600,000 78,361 There is a possibility that the personal information was referenced
4/7/2014 The Ashikaga Bank, Ltd. Personal Internet Banking 77,966 15 There is a possibility that the bank account number and the account balance was referenced
3/27/2014 JCB MyJCB 200 There is a possibility that a point was exchanged for a gift certificate
2/28/2014 mixi inc. mixi 16,972 The mutter which has no remembrance was posted
1/22/2014 Rakuten, Inc. Stylife 24,158 There is a possibility that the cregit card information was referenced
12/21/2013 Dospara Co., Ltd. Dospara order Website 2,926 There is a possibility that the personal information was referenced
10/23/2013 Seven Net Shopping Co., Ltd. Seven Net Shopping 150,165 There is a possibility that the personal information and the cregit card information was referenced
10/7/2013 DeNA Co.,Ltd. Mobage 316 There is a possibility that the personal information and the favorite game was referenced
9/2/2013 GMO Media,Inc. Point Town 5,087 It has been illegally logged
8/29/2013 WebMoney Corporation WebMoney fan club 1,261 There is a possibility that the personal information was referenced
8/21/2013 GMO Media,Inc. yaplog! 4,410 There is a possibility that the personal information was referenced
8/14/2013 GCREST, Inc. Selfy Town 83,961 There is a possibility that the personal information and the history information of virtual currency was referenced
8/13/2013 Cyber ​​Agent Ameba 243,266 There is a possibility that the personal information and the history information of coin was referenced
8/8/2013 GREE, Inc. GREE 39,590 There is a possibility that the personal information and the history information of coin was referenced
8/7/2013 RECRUIT LIFESTYLE CO., LTD. Jalan net 27,620 There is a possibility that the personal information and the reservation was referenced
7/26/2013 Culture Convenience Club Co.,Ltd. T-SITE 27 There is a possibility that a point was exchanged for a gift certificate
7/17/2013 NIFTY Corporation @nifty membership website 21,184 There is a possibility that the personal information and the contract information was referenced
7/9/2013 Konami Digital Entertainment Co., Ltd. KONAMI ID portal website 3,945,927 35,252 There is a possibility that the personal information was referenced
7/5/2013 Nintendo Co., Ltd. Club Nintendo 23,926 There is a possibility that the personal information was referenced
6/19/2013 Nissen Co., Ltd. Nissen online shopping 11,031 126 It has been illegally logged
6/3/2013 HAPPINET CORPORATION Happinet Online 9,609 There is a possibility that the personal information and cregit card information was referenced
5/29/2013 Hankyu Hanshin Department Stores,Inc. Hankyu online shopping 2,382 There is a possibility that the personal information and cregit card information was referenced (1360 people)
5/25/2013 Isetan Mitsukoshi Direct Shopping Ltd. Mitsukoshi online shop 5,202,002 8,289 There is a possibility that the personal information was referenced
5/17/2013 Shiseido Japan Co.,Ltd. Watashi+ 240,000 682 It has been illegally logged
5/8/2013 Dinos Cecile Co., Ltd. dinos online shop 1,110,000 15,000 It has been illegally logged
4/22/2013 MTI Ltd. mopita 5,450 The personal information was referenced
4/17/2013 JR East My JR-EAST 26,000 97 It has been illegally logged
4/10/2013 NIPPON TELEGRAPH AND TELEPHONE EAST CORPORATION FLET’S Hikari Members Club 24,000 77 It has been illegally logged
4/6/2013 Culture Convenience Club Co.,Ltd. T-SITE 299 point was exchanged for a gift certificate (299 cases)
4/5/2013 eBOOK Initiative Japan Co., Ltd. eBookJapan 779 There is a possibility that the personal information and cregit card information was referenced
4/3/2013 NTT Resonant Incorporated goo 108,716 It has been illegally logged
Copyright(c) 2015 jamhelper All Rights Reserved.