Skip to main content

DS Risk Warning: Cyber - 16 billion passwords exposed: how to protect yourself

By

 20/06/25 


News and information is emerging, but not all at once strangely, of the above. We're delving further but decided to give you a 'heads up' and suggest you ensure your already existing best practice of changing passwords is actively pursued urgently.


We have found that Headlines are saying:


Were Facebook, Google, and Apple passwords leaked?


With a dataset containing 16 billion passwords, that’s equivalent to two leaked accounts for every person on the planet.


Nobody really knows how many duplicate records there are, as the leak comes from multiple datasets. However, some reporting by other media outlets can be quite misleading. Some claim that Facebook, Google, and Apple credentials were leaked. While that can’t completely be dismissed, such claims are felt to be somewhat inaccurate.


Huge datasets of passwords spill onto the dark web all the time, highlighting the need to change them regularly. This also demonstrates just how weak our passwords still are.


Last year, someone leaked the largest password compilation ever, with nearly ten billion unique passwords published online. Such leaks pose severe threats to people who are prone to reusing passwords.


Key points:


* The largest data breach in history involves 16 billion login credentials

* The records are scattered across 30 different databases, and some records are or might be overlapping

* The data most likely comes from various infostealers

* The data is recent, not merely recycled from old breaches

* Cybercriminals now have unprecedented access to personal credentials and could exploit them for account takeovers, identity theft, and targeted phishing attacks


Warning:


“This is not just a leak – it’s a blueprint for mass exploitation.


* It’s impossible to tell how many people or accounts are actually exposed.

* Even if you think you are immune to this or other leaks, go and reset your passwords just in case.

* Select strong, unique passwords that are not reused across multiple platforms

* Enable multi-factor authentication (MFA) wherever possible

* Closely monitor your accounts

* Contact your customer support in case of any suspicious activity - be vigilant.


Hope that helps?


Bill


Comments

Post a Comment

Popular posts from this blog

DS Risk Warning: Cyber Critical Update

By
  Critical Update With thanks to our NPs the S W Cyber Resilience Centre, we bring you their updated advice. Please pay close attention to it, regardless that it flows from the attacks on the retail sector. The approach taken can be applied anywhere! The National Cyber Security Centre (NCSC) has issued a critical warning following a wave of cyber attacks on major UK retailers including M&S, Co-op and Harrods. These incidents appear to involve criminals impersonating IT help desks to trick staff into revealing login credentials, a technique known as social engineering.   We’re issuing this urgent message to all SWCRC members to raise awareness and encourage immediate action.   What’s happening?   A group calling itself DragonForce has contacted the BBC to claim responsibility for recent breaches. Their tactics include:        •     Phoning IT staff pretending to be locked-out employees       •     Calling or messaging staff pretending to be from internal IT h...
Post a Comment
Read more

DS Risk Warning: UK raises terror threat level to ‘severe’ following Vienna attack

By
  Home Secretary Priti Patel has confirmed the escalation of the UK terror threat level from "substantial" to "severe" following an attack in Vienna that left at least three dead. The change means that an attack on UK soil is now deemed "highly likely". The Joint Terrorism Analysis Centre has changed the UK terror threat level from substantial to severe. This is a precautionary measure and is not based on any specific threat. The potential is for UK based 'lone wolfs' to be emboldened to take action themselves which could take place anywhere in the UK. We are asked to continue to remain vigilant and report any suspicious activity to the police on 999 or the anti-terrorist hotline: 0800 789 321. If your information does not relate to an imminent threat, you can also contact MI5 . What the threat levels mean: Threat levels are designed to give a broad indication of the likelihood of a terrorist attack. LOW means an attack is highly unlikely MODERATE ...
Post a Comment
Read more

Delegated Services Risk Warning: Weather; Wind

By
  Hello all, The Met Office have just issued the following regarding the next named storm Isha: Amber warning for South West England Wind Between 18:00 (UTC) on Sun 21 Jan 2024 and  09:00 (UTC) on Mon 22 Jan 2024 This covers the following parts of our operational area: Bristol ,  North Somerset ,  Somerset ,  South Gloucestershire  and Monmouthshire. The boundary is inevitably fluid and adjoining areas will obviously experience challenging conditions too. Storm Isha will bring a spell of very strong winds during Sunday evening into Monday. Disruption to travel and utilities is likely. What to expect * Longer journey times and cancellations likely, as road, rail, air and ferry services may be affected * Some roads and bridges likely to close * Probably some damage to buildings, such as tiles blown from roofs * There is a good chance that power cuts may occur, with the potential to affect other services, such as mobile phone coverage * Injuries and dange...
Post a Comment
Read more