- 16 billion login credentials leaked from 30 massive, mostly undisclosed datasets.
- Platforms affected include Google, Apple, Facebook, Telegram, GitHub, and more.
- Breach linked to infostealer malware; poses severe risks of identity theft and cybercrime.
A groundbreaking investigation by Cybernews has revealed a staggering data breach involving over 16 billion login credentials. The leak spans 30 massive datasets, many previously unknown to the public, containing sensitive information from global platforms like Google, Facebook, Apple, Telegram, and government portals.
The scale and scope of the breach are unprecedented. Experts warn that this isn’t just a leak—it provides cybercriminals with a “blueprint for mass exploitation.”
Cybercrime at Scale: 16 Billion Passwords Exposed in Unprecedented Data Leak
Cybernews researchers, led by Vilius Petkauskas, began tracking suspicious datasets earlier this year. Their findings uncovered over 30 enormous collections of login credentials, ranging from tens of millions to over 3.5 billion records each. These records were briefly accessible online, hosted on unsecured servers before being locked down.
Notably, only one dataset out of 30 had ever been previously reported—an already alarming 184 million-record trove covered by Wired magazine in May 2025. The newly discovered databases far exceed that scale, pointing to a deeper, systemic problem in global cybersecurity infrastructure.
Much of the stolen data is believed to have been harvested by infostealer malware, often distributed through phishing emails, cracked software, and malicious browser extensions. These tools quietly log keystrokes and credentials, feeding cybercrime marketplaces with fresh data weekly.
Experts warn this breach could accelerate waves of identity theft, corporate espionage, and financial fraud. As the breach spans email providers, VPNs, developer platforms, and even government sites, the potential for cascading damage is enormous if protective measures aren’t taken swiftly.
This breach serves as a sobering reminder that digital security is not just a tech issue—it’s a personal, societal, and global one. Vigilance must now become the norm.
“The more data you collect, the more risk you accumulate.” – Bruce Schneier, cybersecurity expert
