- 16 billion credentials leaked from major tech platforms
- Apple, Google, Facebook accounts included in exposed data
What happened: Cybernews uncovers large-scale login credential breach
Cybernews discovered a data leak involving over 16 billion login credentials. These credentials came from major services such as Apple, Google, and Facebook. The exposed information includes usernames, passwords, cookies, tokens, and other metadata. The leak combines data from over 30 separate breaches. Some of these data sets contain millions, others over 3.5 billion entries. Most of the records were stored on unprotected systems, such as unsecured Elasticsearch databases or open object storage.
Cybernews stated that the scale of the leak makes it especially serious. Many users whose data is exposed may not use two-factor authentication. This makes them more vulnerable to hacking. The researchers said that crypto accounts are at particularly high risk. The leaked sets may have been gathered or traded by cybercriminal groups. The original source of the full leak remains unknown.
Also read: UK demands for Apple backdoor condemned by US Intelligence chief
Also read: Apple’s $500B US investment
Why it’s important
The leak shows how security failures can affect billions of users. Storing credentials without proper protection allows bad actors to access sensitive data. When passwords are reused across accounts, a single breach can lead to widespread compromise. Services affected include those widely used for payments, messaging, social media, and cloud access.
This leak may lead to more password resets and security alerts from service providers. It also shows the need for stronger protections like two-factor authentication. Crypto users may face targeted attacks if wallet credentials are linked to email or login info. The situation may lead companies to improve storage security and review their data handling practices.
