My understanding is that when the user data was first dumped in 2014, it would have been sold at a good price on some credit cards 'n' passwords market. The buyer would have used the passwords for credential stuffing attacks, and maybe even account takeovers if they found any juicy targets. It would have been sold again at lower prices over time, until eventually it was cheap enough that people running low-return operations like spamming would have used it. And now it's considered largely useless because it has been "used up", so it's just circulating freely.
So yeah, there have been some spam waves recently (including account takeovers used for posting spam!) and scam emails where the scammer sends you your LJ password and claims to have "hacked your email", but those were probably from people who bought the DB later on.
![[personal profile]](https://www.dreamwidth.org/img/silk/identity/user.png)
timeasmymeasure
no subject
Date: 2020-05-26 05:16 pm (UTC)So yeah, there have been some spam waves recently (including account takeovers used for posting spam!) and scam emails where the scammer sends you your LJ password and claims to have "hacked your email", but those were probably from people who bought the DB later on.