Jakarta, INTI - A huge scale of data breach has been discovered, involving over 16 billion login credentials. The incident is being called one of the largest in history. The report was first revealed by Cybernews and Forbes, which immediately categorized it as a global cyber emergency. Experts emphasized that the leaked data was not simply a rehash of old cases, but rather new data that is systematically collected through infostealer malware.
This malware works by infiltrating devices without the user's knowledge, stealing login information such as usernames and passwords, and then sending it to the perpetrator's servers. In this case, the leak originated from at least 30 different databases, each containing tens of millions to billions of entries.
The leaked data was neatly organized, listing digital service addresses followed by usernames and passwords. Popular services such as Apple, Google, Facebook, Telegram, GitHub, and government platforms are said to be potentially targeted.
In response, Google urged its billions of users to switch from passwords to more secure login methods such as passkeys. Meanwhile, the FBI has also warned of suspicious SMS links suspected of being linked to a large-scale phishing campaign.
New Data Information and Structures Make Hacking Easier
Experts consider this leak extremely dangerous because it allows anyone, even low-skilled hackers, to access digital systems simply by purchasing stolen data on the dark web. Unlike incidents that only impact specific companies, this leak has the potential to open vulnerabilities in nearly every layer of the global digital infrastructure.
"The leak of just one password could open access to a person's entire digital life," the experts said.
The combination of massive amount of data, well-structured nature, and new information make this case high-risk. The leaked credentials are suspected to have originated from a combination of credential stuffing techniques, old leaks, and new logs from infostealer malware.
Most of the data was collected covertly, and some was even accidentally left open and eventually spread widely. With more than 16 billion accounts exposed, internet users are advised to immediately take protective measures such as changing passwords, using a password manager, activating two-factor authentication (2FA), switching to passkeys, and monitoring for possible data leaks on the dark web.
Conclusion
The leak of over 16 billion login credentials revealed by Cybernews and Forbes poses a serious threat to global digital security because it involves newly structured and easily misused data. The scale and nature of this leak open up vast opportunities for cybercriminals, so users need to immediately enhance account protection by taking steps, such as changing passwords, enabling 2FA, and switching to more secure login methods like passkeys.
Read more: Austria will Restrict Children Under 14 from Social Media, Official Bill to Be Introduced by End of June 2026