A huge data breach has exposed the login details of over 184 million accounts across major platforms like Facebook, Google, Apple, and many more.
Millions of Accounts Compromised
Security researcher Jeremiah Fowler discovered an unsecured database containing 184,162,718 login records. This massive trove of data, spanning over 47 gigabytes, included credentials for various services. A small sample revealed hundreds of accounts from Facebook, Google, Instagram, Roblox, Discord, Microsoft, Netflix, and PayPal, among others. The data also included login information for Amazon, Apple, Nintendo, Snapchat, Spotify, X (formerly Twitter), WordPress, and Yahoo. The database has since been taken down.
Serious Security Risks
Fowler warns that this breach leaves victims vulnerable to various attacks, including:
- Account takeovers: Hackers could gain control of users’ accounts.
- Phishing and social engineering: Victims could be targeted with scams using their stolen information.
- Corporate espionage: Sensitive company data could be compromised.
The researcher also noted the presence of numerous government (.gov) accounts from various countries, raising concerns about potential state-level security risks.
The Mystery of the Database
The origin of the database remains unknown. However, the password field was labeled “Senha,” the Portuguese word for “password,” suggesting a possible connection to Portuguese-speaking regions. Fowler believes a cybercriminal is the most likely culprit behind this massive data collection. The length of time the data was exposed and whether others accessed it before removal is still under investigation.
