A significant data breach has exposed over 184 million records, including emails, passwords, and login links, from major companies such as Apple, Google, Facebook, Microsoft, as well as banks and government services. This unprotected database was discovered by cybersecurity expert Jeremiah Fowler, who described it as a "cybercriminal’s dream working list."
The Scope of the Breach
The leaked information comprises sensitive credentials in plain text, providing direct access to user accounts. This exposure significantly increases the risk of identity theft, fraud, and unauthorized account access. Fowler emphasized the severity, noting that such comprehensive access to personal data is unprecedented.
Rising Trend in Data Breaches
Data breaches have been escalating. In 2023, breaches increased by 72%, affecting approximately 353 million individuals. In 2024, while the number of breaches remained high, the number of affected individuals surged by 312%, largely due to mega-breaches like this one.
Cloud Services and Security Risks
The adoption of cloud services such as AWS, Google Cloud, and Microsoft Azure has grown, offering cost savings and scalability. However, this shift has also introduced new security vulnerabilities. An IBM report indicated that 82% of breaches last year involved data stored in the cloud.
Recent Incidents Highlighting Vulnerabilities
On May 11, 2025, hackers allegedly bribed overseas support agents at the cryptocurrency exchange app Coinbase to gain access to the customer database. Although Coinbase did not pay a ransom, the breach could result in damages up to $400 million.
Immediate Actions for Users
To mitigate the risks associated with this breach, users are advised to:
- Change Passwords Immediately: Ensure each account has a unique, strong password comprising a mix of characters, numbers, and symbols.
- Avoid Password Reuse: Do not use the same or similar passwords across multiple sites.
- Enable Multi-Factor Authentication (MFA): Add an extra layer of security by requiring additional verification steps.
- Monitor Financial Accounts: Set up transaction alerts on credit cards and bank accounts to detect unauthorized activities promptly.
- Freeze Credit Reports: Contact the three major credit bureaus—Equifax, Experian, and TransUnion—to freeze your credit. This prevents new accounts from being opened in your name without affecting your credit score.
- Utilize Security Tools: Employ tools like Google’s Password Checkup to determine if your login information has been compromised.
This breach serves as a stark reminder of the importance of proactive cybersecurity measures. As Teresa Murray aptly stated, "This is a wake-up call for people who haven’t been careful online."
By taking immediate action and adopting robust security practices, individuals can better protect themselves against the growing threat of cyberattacks.
Source: The Economic Times Urgent alert for Americans as 184 million passwords leak in major data breach - what you must do now