A massive trove of 16 billion login credentials has been exposed online, according to a new report by cybersecurity group Cybernews — a revelation that highlights the growing vulnerability of digital accounts used in everyday life.
The report reveals that researchers identified 30 different datasets recently posted online, each filled with compromised usernames and passwords. The leaked credentials span major platforms such as Google, Facebook, and Apple, among others.
To put the number into perspective, the amount of stolen logins is nearly double the current global population, indicating that many individuals had multiple sets of credentials compromised. However, Cybernews clarified that there are likely significant duplicates in the datasets, making it difficult to determine the exact number of unique users affected.
The leak is not tied to a single hack. Rather, it appears to be a compilation of stolen data collected over time from various breaches. “Infostealers,” a type of malware that silently extracts sensitive data from infected devices, are believed to be the primary method through which this information was gathered.
While it remains unclear who currently possesses the leaked data, experts are once again urging the public to strengthen their digital defenses. Cybernews recommends immediate password changes, especially for users who reuse the same credentials across multiple platforms. They also advise enabling multifactor authentication and using secure password managers to reduce the risk of future breaches.
