A huge data breach has shaken the internet after researchers working with Cybernews found over 16 billion login credentials exposed. These credentials come from major platforms like Google, Apple, Meta (Facebook), and many others. This is the largest breach of its kind ever discovered.
A lot of details were linked, including real usernames, passwords, cookies, and metadata, all neatly organized and ready to be used by hackers. According to researcher Vilius Petkauskas, these details are clean and organized, most of them have never been seen before, which means hackers can easily use them with hacking tools.
The researchers found 30 big files, with each one holding between millions to billions of records. One file had more than 3.5 billion passwords by itself. Only one of the 30 files had been shared before. The rest are all new.
These records could unlock personal emails, social media, and even government systems, which makes the situation even more dangerous. The ones with the highest risk are people who use cryptocurrency. If the hacker could manage to gain access to their emails, they could reset their passwords and take over their crypto accounts.
Some wallets also store keys or recovery phrases in cloud services. If attackers find those, they can steal the funds instantly. This may even lead to more targeted hacks and phishing scams.
Binance founder Changpeng Zhao (CZ) reacted to the news on X, posting: “That’s 2 passwords per person for the planet. Use a different password for each site, and hopefully a different email address too. And use a hardware 2FA device!” What he means is that everyone should update their login info and add extra layers of protection.
The leaked credentials also include logins to tools like GitHub, Telegram, VPNs, and developer portals, which could lead to even bigger cyberattacks on companies.
Security expert Darren Guccione, CEO of Keeper Security, said this shows how poor cloud security still is. “This could be just the tip of the biggest security iceberg,” he warned.
Researchers say the data was likely taken using infostealer malware and not from public leaks. The breach affects people and companies worldwide. Everyone is advised to change their passwords, avoid reusing them, and turn on two-factor authentication.
Also Read: Israeli Hackers Leak Nobitex Source Code After $100M Crypto Heist
