Global cybersecurity threat grows as 16 billion passwords leaked online

In what experts are calling one of the most alarming cybersecurity breaches in internet history, over 16 billion passwords have been leaked online, putting the personal data of millions at serious risk. According to investigations, the leaked data is fresh, well-organized, and likely harvested using infostealer malware, a type of malicious software that silently extracts login credentials from users' devices.

Also Read:Bengaluru model falls prey to cybercrime; crooks threaten to leak her nudes

Unlike older breaches where outdated credentials were dumped online, this breach contains recent login information from widely-used platforms such as Google, Facebook, Telegram, GitHub, and even some government services. The exposed credentials are formatted in a way that makes them instantly usable, showing the website address along with the username and password.

Security experts warn that the structure of this data makes it a blueprint for global cybercrime, as the credentials are easily accessible on the dark web, often for very low prices. Even individuals with limited technical skills can misuse this data, making the threat widespread and difficult to contain.

Authorities, including Google and the FBI, have issued urgent advisories. Google has encouraged users to adopt passkeys as a safer alternative to traditional passwords. The FBI has also urged caution, advising users to avoid clicking suspicious links or entering credentials in response to emails or texts.

Cybersecurity professionals recommend immediate action. Users should change passwords, use unique and complex combinations, enable two-factor authentication (2FA), and consider password manager apps. They should also monitor whether their credentials have been exposed through dark web monitoring services.