假冒Z-Library网站导致10亿用户隐私被盗
发布时间:2025-01-28 05:44:13
假冒Z-Library网站导致10亿用户隐私被盗
The website “Z-lib[.]is,” where the exposed database backup was discovered, is a phishing website resembling the e-books database Z-Library. Instead of allowing users to illegally download books for free, the website collects login credentials and also requests payments.
The Z-lib website was created just days after the original Z-library domains were seized by law enforcement in November 2022. The founders, Anton Napolsky and Valeriia Ermakova were arrested in Argentina.
Scammers pretended to continue the website’s activities, and the identities of the Z-lib owners are unknown. The operators of the fake websites impersonate the Z-Library project and claim to be the only “legitimate” Z-Library website.
sheer amount of compromised accounts in this leak is almost unprecedented. It’s rare to find such malicious campaigns running for so long, so successfully, and attracting so many victims. The identified 10 million accounts likely exceed the number of accounts from the original Z-Library website before its takedown,” researchers said.
There are multiple Z-Lib domains (website names), and according to SimilarWeb, one of them has 10.7 million monthly visitors, and another has 7.6 million. Those should not be confused with the original Z-library service, which is still online despite many legal challenges, domain seizures, and blocking attempts. However, the long outages contributed to the copycats’ high popularity
Z-Lib users should expect that the exposed data will likely be used by authorities, cybersecurity researchers, cybercriminals, and potentially anyone who can benefit from it. The data is not widespread yet, but it is vital to take action to protect other accounts.
“Law enforcement and copyright holders may use the leaked data to take legal action against the website’s users,” researchers said.
#假冒zlibrary网站 #zlibrary被查封 #zlibrary最新网址