Experts have confirmed a massive data leak: passwords for 16 billion Apple, Facebook, Google, and other service accounts have been publicly available. This was reported by Forbes.
The leak is believed to have occurred due to several types of malicious software, such as info stealers. According to Cybernews cybersecurity journalist Vilius Petkauskas, 30 separate data sets were discovered, each containing tens of millions to over 3.5 billion records. This is the largest leak of its kind known to date.
These credentials relate to accounts on social networks, VPN services, developer portals, Apple, Google, Facebook, GitHub, Telegram, and even government systems. Researchers say that most of these databases have not appeared in leaks before — this is new information. Only one database — with 184 million passwords — was previously known.
“This is not just a leak — it’s a clear plan for mass attacks,” experts say.
Most records have the structure URL — login — password, allowing access to almost any online platform. This leak is not the result of direct hacker attacks but rather a compilation from various sources through info stealers or accidental leaks. Darren Guccion, CEO of password protection company Keeper Security, believes the incident proves how easily essential data can become publicly available.
Since the accounts are linked to popular services, the consequences could be global. Therefore, experts advise using password managers, monitoring the Dark Web, and implementing multi-factor authentication.
