recently, it was reported that the police in Jiaxing, Pinghu cracked a hacker attack case, the use of criminal gangs Ali loophole, the successful acquisition of Taobao account information about 99 million. Now Taobao official to make a statement on the matter, saying the report itself there are key facts wrong.
Taobao said that in November 2015, the Pinghu Public Security Bureau police brigade received Alibaba security team request file, found a criminal gangs use social illegally stolen user database, Taobao account, Taobao in order to obtain the user’s account information. Then the police investigation, finally cracked the case involving up to more than 200 yuan of the "hit".
Taobao stressed that the case is not an account of the attack caused by Taobao leaked. The truth is that the suspect use non Taobao user accounts have hands, Taobao about 99000000 times to try, 20 million 590 thousand of which were found at the same time, Taobao account or account.
below is the full text of Taobao statement:
for today’s media reports "Taobao 99 million account information stolen", reported itself key facts wrong. This statement is as follows:
1, the case is not an account of the attack caused by Taobao leaked. The truth is that the suspect use non Taobao user accounts have hands, Taobao about 99000000 times to try, 20 million 590 thousand of which were found at the same time, Taobao account or account. Black than the success of the industry, have tried to use other platform password login (commonly known as hit the Library), but the vast majority of logging behavior was intercepted by Taobao and thus attempted. After Taobao reported the incident and provide clues, the police found part of the account was hacked into a single team for malicious behavior.
2, similar to the "hit" behavior has rich experience in dealing with and complete measures to hit the library user account, safety tips and password has been the first time to modify the reminder, and take interim measures of protection, complete until the user password changes. In addition, Alibaba security team is actively cooperate with the police back to be used to hit the library, the original account source, and take relevant measures to help safeguard the security of the entire Internet industry.
3, hit the library is black Internet common behavior, hit library website and users are the production of black victims. The process has been compromised by the user account + password to try to log on to other sites account. As part of the network users are accustomed to using the same account password in a number of sites, so once a site user database leak, will lead to the user’s assets in multiple sites damaged.
4, the case was first discovered by the Alibaba security team traces of criminal suspects, and informed the police in Pinghu. In the process of investigation in the Alibaba security team to provide a lot of information, and ultimately help the police arrest the suspect; Alibaba security team has been actively assist the police to combat cyber black production.