It has been reported that a massive, 711 million email address “database” has been dumped on the Web:

http://www.couriermail.com.au/technology/change-your-email-password-now-if-youre-on-this-list-of-711-million-accounts/news-story/3fecd838cbde75f59b6cad8d7d298f8b

http://www.zdnet.com/article/onliner-spambot-largest-ever-malware-campaign-millions/

On further analysis it is a bit of a beat up.  Whilst it’s true that there are millions of real email addresses in there, there’s no way of determining if an address has been dumped with a password as well.

Therefore, whilst it’s good news for the Spammers to obtain valid email addresses, if you are already using a decent Email service your spam filters just be a little bit busier not you!

You can check if your email address is in the database here:

https://haveibeenpwned.com/

If your email address shows up (and realistically it probably will!) I would advise to reset your email password as a precaution anyway.

The key here is strong AND different passwords between all systems hence why we use and recommend LastPass:

https://lastpass.com/f?8495566

As always, if you have any questions or concerns, feel free to contact us.

Regards,

Simon

Reference:

https://www.troyhunt.com/inside-the-massive-711-million-record-onliner-spambot-dump/