Cybernews researchers have uncovered a massive data breach exposing approximately 16 billion login credentials. This breach affects widely used platforms such as Apple, Google, Facebook, GitHub, Telegram, and even government services.
The leak comprises 30 distinct datasets, each containing tens of millions to over 3.5 billion records. This data was collected over time from multiple sources and attacks, including infostealers, which are designed to steal sensitive information.
The exposure of this data, though brief, was enough for malicious actors to gain access to the content. Potential uses of this information include sales on the dark web, identity theft, and extortion schemes.
Experts warn that most of the databases had not been publicly mentioned before. The only exception is a case reported in late May by Wired magazine, when a researcher discovered a "mysterious database" with 184 million entries.
Among the services that may be at risk, experts cite platforms like Apple, Facebook, Google, GitHub, Telegram, and even government environments. "This is not just a leak -- it's a plan for mass exploitation," researchers warned.
Authorities like Google have recommended changing compromised passwords, while the FBI has issued guidance against clicking on links received via SMS, one of the entry points for scams.