Massive data breach: 10 billion passwords leaked, change yours now
Everyone with an account on LinkedIn, X (formerly Twitter), MySpace, MyFitnessPal, Canva, Badoo, and several other sites should change their password immediately. Hackers have released over 10 billion login details.
The person responsible for stealing nearly 10 billion login records goes by the pseudonym ObamaCare. The hacker boasted about his work, which he named "RockYou2024".
The cybercriminal acquired 8.4 billion passwords from 2021 at the latest. The remaining 1.5 billion new records are from the period 2021–2024.
Xmas came early this year. I present to you a new rockyou2024 password list with over 9.9 billion passwords," wrote the user ObamaCare on the forum.
The entire package containing logins and passwords was published in a .zip file with a size of approximately 50 GB. This data comes from sites:
- X (formerly Twitter – 281 million records)
- AdultFriendFinder (220 million)
- MyFitnessPal (151 million)
- LinkedIn (251 million)
- Adobe (153 million)
- Canva (143 million)
- JD.com (142 million)
- Wattpad (271 million)
- VK (101 million)
- Youku (100 million)
- Badoo (127 million)
- Deezer (1370 million)
- MySpace (360 million)
- Weibo (504 million)
- Tencent (1.5 billion)
The two portals with the most stolen login data are Chinese sites. The file regarding the Tencent platform has 1.5 billion records. Meanwhile, the one about the Weibo social platform has 504 million.
Every internet user can check if their data has been stolen. Enter your password on the Cybernews site.
If your password has been stolen, it must be changed immediately on all accounts used to log in. Experts advise choosing solid and unique combinations, using password managers, and using multi-factor authentication.
