A Big Data Leak: 149 Million Logins Left Unprotected

A Critical Security Flaw

A huge problem has been discovered. A database containing 149 million login details was left unprotected on a cloud service. Among these, 900,000 Apple account details were exposed. The issue was uncovered by a security researcher who had previously identified a similar vulnerability last year.

Recurring Issue

Last year, the same researcher found another unsecured database with 184 million records, including accounts from Apple, Facebook, Google, and others. The data was likely stolen by malware known as infostealers. These malicious programs infiltrate devices and collect personal information, often spreading through phishing emails or pirated software.

This Time: A Widespread Problem

The latest exposed database contained logins for various services, including:

• 48 million Gmail accounts
• 17 million Facebook accounts
• 420,000 Binance cryptocurrency accounts
• 4 million Yahoo accounts
• 1.5 million Microsoft Outlook accounts
• 1.4 million academic accounts

The worst part? Anyone could access it using just a web browser.

Action Taken and Ongoing Threats

The researcher reported the issue, and the hosting service removed the database. However, the problem of infostealers is growing. Criminals can rent the tools needed to steal data for as little as $200 a month. Hackers can use stolen logins to access personal data, including photos and other sensitive information.

How to Stay Safe

To protect yourself, it's crucial to:

• Use a password manager to ensure each account has a unique, strong password.
• Avoid reusing passwords across multiple sites, as hackers often try the same login details on various platforms.