Security Researchers Discover Spammer List of Over 7. Million Email Accounts. A%2F%2Fcdn.evbuc.com%2Fimages%2F35816437%2F5938314245%2F1%2Foriginal.jpg?w=1000&rect=0%2C26%2C748%2C374&s=2b708abb915f0410d87824b9bb7a5380' alt='Block Email From Software Spam Museum' title='Block Email From Software Spam Museum' />An unknown hacker has gathered up to 7. Netherlands, ZDNet reported. The server contains passwords to both email addresses and servers which are apparently being used to send large amounts of spam through legitimate accounts, thereby bypassing filters. A Paris based researcher using the pseudonym Benkow first brought the list to the attention of Troy Hunt, the web security expert best known for running Have I Been Pwned, a site which alerts users to breached accounts. In a post on his website, Hunt wrote the server hosting the spam accounts was inexplicably left unprotected and publicly accessible as of Tuesday, and he had already contacted authorities in an attempt to get it scrubbed from the web. Hunt was quick to note many of the email addresses appeared to have been scraped off the web or aggregated from other sources, so whilst the 7. But the overall amount of data in the breach was mind boggling, he added, and it took Have I Been Pwned 1. According to ZDNet, the unknown parties behind the server were using the list in coordination with the Onliner spambot to distribute the Ursnif malware, which is capable of stealing large amounts of data from browsers and software particularly banking info. As Benkow explained, the list includes a huge list of SMTP credentialsin the neighborhood of 8. The emails sent appeared to include an almost invisible 1x. GIF. If a user opens the email, Benkow wrote, a request with your IP and your User Agent will be sent to the server that hosts the GIF. 24 Season 8 Prequel Download Chrome. With these information, the spammer is able to know when you have opened the email, from where and on which device. That information is necessary to create a slimmed down list of potential secondary targetsthe people who would be hit with second emails containing malware. Yet another reminder not to open spam. According to Hunt, hes added the email addresses listed in the server to Have I Been Pwned, making it easy as pie to check whether any email address has possibly been compromised. So go do it. ZDNet. Latest trending topics being covered on ZDNet including Reviews, Tech Industry, Security, Hardware, Apple, and Windows. McAfee Security Threat Center provides information about the latest virus alerts and vulnerabilities. Get reliable, lowcost dialup Internet service, highspeed broadband Internet access, Web hosting more. Connect with us for savings, support satisfaction Gmail is email thats intuitive, efficient, and useful. GB of storage, less spam, and mobile access.