A team of cybersecurity researchers at Cybernews, led by Vilius Petkauskas, has exposed the largest data breach, leaking 16 billion login credentials, passwords, and sensitive data from major online platforms, Forbes reported.
The Cybernews is one of the top cybersecurity news platform, delivering real-time updates, threat intelligence, data breach reports, expert analysis etc.
The investigation team found 30 separate data dumps, each containing anywhere from tens of millions to over 3.5 billion records. In total, the team has confirmed, the number of compromised records has now hit 16 billion.
According to Vilius Petkauskas, the leaked data appears to be the result of various infostealer malware attacks — malicious software designed to quietly collect usernames, passwords, and other sensitive data from infected devices.
The leaked credentials reportedly include login information for social media accounts, VPNs, developer tools, and major online services, including Apple, Google, Facebook, GitHub, Telegram, and even government portals.
Petkauskas told Forbes that most of the stolen info is formatted as simple URL links followed by usernames and passwords. In short, if you've ever logged into anything online, your information could be in this leak.
"This is not just a leak – it's a blueprint for mass exploitation. These credentials are ground zero for phishing attacks and account takeover; these aren't just old breaches being recycled," the researchers warned.
Speaking to Forbes, Darren Guccione, the CEO and co-founder of Keeper Security, a privileged access management platform to prevent data breaches and mitigate cyber threats, said that consumers should invest in password management solutions and dark web monitoring tools more than ever.
"This means that cybersecurity is not just a technical challenge but a shared responsibility. People need to remain vigilant of any attempts to steal login credentials," he added.
