Over 18 Crore Facebook, Instagram & Apple Passwords Leaked Online: Report
In a shocking revelation, cybersecurity researcher Jeremiah Fowler has disclosed that over 18.4 crore account credentials, including login information and passwords, have been leaked online. The leaked credentials belong to accounts on government portals, bank and financial sites, Facebook, Instagram, Snapchat, Microsoft, Apple, and Google.
This massive data breach is a cause of concern for millions of users who have used the same password across multiple platforms. The alarming part is that the file containing the credentials is not even password-protected, making it easily accessible to anyone who has stumbled upon it.
The leak is believed to have originated from a vulnerability in the password manager tool, LastPass, which was first reported in 2022. The vulnerability allowed attackers to access the encrypted vault, resulting in the theft of sensitive information.
Fowler, the cybersecurity researcher, discovered the massive data breach while analyzing a leaky database. He shared his findings on social media, warning users to change their passwords immediately. The leak is significant, as it includes credentials from some of the most popular online platforms, including Facebook, Instagram, Apple, and Google.
The leaked credentials include:
- 700,000 Apple account credentials
- 2.5 million Microsoft account credentials
- 1.4 million Google account credentials
- 1.2 million Facebook account credentials
- 1.1 million Instagram account credentials
- 500,000 Snapchat account credentials
- Credentials from various government portals and bank and financial sites
The implications of this data breach are far-reaching. With access to sensitive information, attackers can use it to steal identities, make unauthorized transactions, and even gain access to secure networks. The fact that the file is not password-protected makes it even more vulnerable to exploitation.
This is not the first time that large-scale password leaks have occurred. In 2020, a similar breach exposed the login credentials of over 1.2 billion online accounts. The frequency and severity of these breaches highlight the urgent need for improved cybersecurity measures and password management practices.
To mitigate the risk of identity theft and financial fraud, users are advised to take the following steps:
- Change your passwords: Immediately change your passwords for all accounts that have been compromised.
- Enable two-factor authentication: Enable two-factor authentication (2FA) whenever possible to add an extra layer of security to your accounts.
- Use unique passwords: Use unique and strong passwords for each account to prevent attackers from using the same password to access multiple accounts.
- Monitor your accounts: Regularly monitor your accounts for suspicious activity and report any unusual behavior to the relevant authorities.
- Use a password manager: Consider using a reputable password manager to generate and store unique, complex passwords for each account.
In conclusion, the recent leak of over 18 crore account credentials is a stark reminder of the importance of cybersecurity and password management. Users must take immediate action to protect their sensitive information and prevent identity theft and financial fraud.
Source:
