According to a recent report from CryptoNews.com, over 16 billion login credentials have been exposed in a massive new mega breach — and it’s putting crypto users at serious risk.
This isn’t just one data leak — it’s a massive combination of stolen data gathered from infostealer malware, credential stuffing attacks, and undisclosed breaches dating back to early 2024. Some of the datasets alone contain up to 3.5 billion entries.
Platforms affected include Apple, Google, Facebook, Telegram, GitHub, and many more. One of the Telegram-linked datasets had over 60 million records, and another, possibly from Russia, had a shocking 455 million entries.
What makes this breach even more dangerous is that much of the data is freshly harvested and includes login details, session cookies, and tokens — highly sensitive stuff. Cybersecurity experts are warning that the structure of this data shows it was collected by advanced modern malware, not just recycled from old leaks.
A lot of it was briefly exposed through unsecured Elasticsearch databases and object storage systems, making it easy for bad actors to copy.
⚠️ If you’re in crypto, this is especially concerning. With this kind of access, hackers could easily attempt phishing, ransomware, or even drain crypto wallets — especially for users not using multi-factor authentication.
🔐 Now’s the time to double-check your security settings, rotate your passwords, and enable MFA everywhere you can. Stay safe out there.
