🔓 Enormous Collection of Stolen Credentials
- Cybernews data researchers recently found 30 exposed databases containing a total of around 16 billion login records that’s usernames, passwords, and associated website URLs for millions of accounts around the world.
🕵️ How Did This Happen?
- Most of this information was collected through infostealer malware a sneaky type of malicious software that steals login data and sends it to attackers.
- Some of it also comes from older data breaches and “credential stuffing” attacks, where hackers reuse stolen credentials on multiple sites.
⚠️ Why It’s Dangerous
- With this “blueprint” of billions of credentials, cybercriminals could launch mass phishing attacks, take over accounts, steal identities or worse.
- Many records appear to be recent, making them more useful to attackers.
- There’s no easy way to know exactly who is behind the leak or whose data is exposed it might involve several criminal groups or unknown researchers .
âś… What You Should Do
- Change passwords for all important online accounts and never reuse passwords.
- Turn on multi-factor authentication (MFA) where possible.
- Use a password manager to create strong, unique passwords.
- Consider using passkeys (like those supported by Google or Apple) for extra security.
- Check if your email or login was compromised using tools like Have I Been Pwned or Google Password Checkup.
Ref : https://cybernews.com/security/billions-credentials-exposed-infostealers-data-leak/
