“The problem is that , as cyber security experts say, they have never met a cyber criminal who gets into a database, takes only what is necessary and gets out. Chances are he looks around. Pilfers something else that might be of value. Or worse still leaves behind something nasty.( as of this writing, there is no evidence that Scihub or its partners have actually compromised the security of the universities with any malware).
Moreover when a password is hacked, the hacker has access to the bare minimum information in the database – for example a library database. The details such as username, age, gender, timing of visiting the library, date of joining, last visit taken, last book etc can be easily gotten. From then it is only a matter of social engineering to gain access to other portals – email, social media etc. It is also a matter of concern that some people have the same password for all their sites ! …
[P]ublishers [might] tighten access – perhaps a DRM (digital rights management) or two factor authentication might be introduced – so even if the passwords are stolen by phishing attacks/attacks on university, it will become harder to access the articles….
To make things worse, nothing in Russia can be done without the tacit approval of the government. It is a well known fact that , as a price for such approval, the government/non governmental actors might want to be a ‘part’ of the project, presumably not to download science articles. She being a marked woman, with no other refuge, would have to yield to their pressure or face the music. People have disappeared for daring to disobey the non-governmental actors in Russia.
This is where the possibility of compromised passwords providing access to the university systems causes worry. However all of this remains conjecture – or the feverish imagination of jobless bloggers at the moment. (But who doesn’t love the bragging rights to ‘I told you so’ when a disaster strikes in the future).
There is also evidence that China has been downloading a lot more than the usual academic download – although for what purpose isn’t known. Also Iran is the third largest access site – that too, a small city in Iran, raising eyebrows about what is going on….”