More than 184 million passwords may have Watch Powerbeen compromisedin a massive data leakaffecting everything from social media logins to bank accounts, according to a new reportpublished by cybersecurity researcher Jeremiah Fowler. Ironically, the database containing the leaked passwords was itself non-password-protected, according to Website Planet.
Fowler says he uncovered the publicly accessible and unencrypted database, which contains 184,162,718 unique logins and passwords to popular websites and apps. As spotted by our colleagues at ZDNet, the exposed logins and passwords are reportedly tied to email providers like Google, a range of Microsoft products, as well as social media platforms like Facebook, Instagram, and Snapchat. Credentials for other applications and services, such as Roblox, were also found in the database. Furthermore, according to Fowler, sensitive information from bank accounts, health services, and even government portals was stored in the database, which is no longer online.
Because Mashable has not been able to review or independently confirm that the database contained leaked data, we reached out to some of the companies implicated in the report. A Snapchat representative said it has not found any evidence of a data breach or vulnerability on their platform. We'll update this article if we hear back from any other companies.
While it's not yet clear exactly how the sensitive data in the database may have been stolen, the fact that platforms like Snapchat have not found any vulnerabilities in their network makes sense considering Fowler's assessment of the situation.
According to Fowler, the database showed signs that it was compiled with data from an infostealer malware. Fowler describes infostealer as a type of "malicious software designed specifically to harvest sensitive information from an infected system." This means that the more than 184 million passwords were likely stolen directly from the affected users themselves.
Infostealer malware can scrape user data stored in web browsers, including autofill data and cookies. Data stored in emails, including drafts and documents, as well as messaging apps, can also be harvested by simply tricking the targeted user into downloading the malware.
These sorts of data breaches have become increasingly common in recent years. For example, Mashable previously reported on the RockYou2024 leak, which is regarded as the biggest password leak ever. In July of last year, a malicious user shared this compilation of nearly 10 billion credentials on hacker forums. These large data breaches provide bad actors with a dangerous tool to carry out automated brute force attacks.
Mashable will update this post with any new information about the leak.
Topics Cybersecurity Facebook Instagram Microsoft Snapchat
SpaceX's Starlink will provide free satellite internet to families in Texas school district
Beats By Dre gets Nicki Minaj and other A
Man gets 20 years for shooting at George Zimmerman and the internet can't cope
Can't wait for the new 'Black Mirror'? Read this.
Sony launches new flagship XM6 headphones: Order them now
The boat unoffcially known as Boaty McBoatface is officially under construction
Watch Chloe Grace Moretz game alongside Rooster Teeth employees in new video series
It's Monday and you deserve this sexy Harry Potter boudoir shoot
Bargaining For the Common Good
Martin Shkreli ignites drama with an impromptu happy hour in Brooklyn
The Best Gaming Concept Art of 2016
Chrissy Teigen has a budget friendly birthday gift idea: Nudes
Airborne cats will fly into your heart in new photography book
Golden Tate celebrated his first touchdown of 2016 by dancing with the Lions cheerleaders
Operation Mensch
AMC renews 'The Walking Dead' for Season 8
Now four members of One Direction have solo deals
Beats By Dre gets Nicki Minaj and other A
Best portable power station deal: Save $179.01 on the EcoFlow River 2 Max
Woman paints dress with every comment made about her appearance
Best Masterclass deal: Get two subscriptions for the price of oneTinder introduces Relationship Goals profile featureStaff Picks: Paleoart, Mark Twain, Writers’ Workspaces, and MoreCan AI Write Pop Songs? On Music and Machine LanguageStraightening out ‘Ulysses’: A Translator’s NotesCan AI Write Pop Songs? On Music and Machine LanguageThe best tweets of 2022: Twitter's last 'normal' year50+ best Black Friday monitor deals: Save up to $800Great Moments in Literacy: The American Library AssociationWe’re Called “The Paris Review,” But We’ve Got Nothing for Bastille DayYouTubers face penalties if they use generative AI — unless they comply with this new rule“Would You Like to Write Something for My Magazine?”Argentina beat Croatia in World Cup semifinal and the internet reacted appropriatelyP1Harmony on their YouTube watch histories, internet rumors, and what makes them happyWordle today: The answer and hints for November 1550+ best Black Friday monitor deals: Save up to $800Tales of the Unexpected: A Ghost StoryStaff Picks: Renee Gladman, Carol Rama, and Ocean MythologyIt Was a Year of Pirates: Read Joe Scarborough’s Favorite PoemSoviet Women Soldiers of World War II I Got Hurt Feelings Constantine Cavafy, Influencer The Pensioner Mother Knows Best Toothache, Bleeding, Farewell The Sounds of Internment Mother May I Gay Liberation Failed The Despotism of Isaias Afewerki The Fourth Person No Consequences Best controller deal: Save up to 27% on a PlayStation DualSense wireless controller Dead the Long Year The Sick Proletariat In the Red Zone The Revelations Will Be Televised Without Them Model Practitioner Have You Forgotten Him? To Name It Now
2.7991s , 8223.7109375 kb
Copyright © 2025 Powered by 【Watch Power】,Pursuit Information Network