16 BILLION PASSWORDS #LEAKED: APPLE, GOOGLE, FB USERS EXPOSED
The largest password leak ever: 16B login #credentials—Apple, Google, FB, GitHub & more—are now circulating.
Sourced from 30+ fresh datasets (not recycled), it includes usernames, passwords, URLs, emails & login sequences.
A blueprint for #phishing & account takeovers at scale.
Act fast. Stay ahead.
Epic 16B login #leak nobody heard about | Cybernews
Several collections of login #credentials reveal one of the largest data breaches in history, totaling a humongous 16 billion exposed login credentials. The data most likely originates from various #infostealers.
#privacy #security #databreach
https://cybernews.com/security/billions-credentials-exposed-infostealers-data-leak/
Mysterious Database of 184 Million Records Exposes Vast Array of #Login #Credentials
#pii #security #privacy
https://www.wired.com/story/mysterious-database-logins-governments-social-media/
Can we change our passwords now?!
A huge unsecured credential database discovery is a great reminder to change your passwords
Hey @jetbrains, when are you gonna fix the #bug in #PyCharm where it randomly forgets #credentials and I can't just add them but have to delete the entire config files...
FIX YOUR STUFF FFS!
DOGE software engineer’s computer infected by info-stealing malware - Login credentials belonging to an employee at both the Cybersecurity and I... - https://arstechnica.com/security/2025/05/doge-software-engineers-computer-infected-by-info-stealing-malware/ #cybersecurityandinfrastructuresecurityagency #departmentofgovernmentefficiency #credentials #kyleschutt #passwords #security #biz #policy #cisa
If you use #Gmail, you need to know about this #phishing attack, as described by Malwarebytes Labs: "Cybercriminals are abusing Google’s infrastructure, creating emails that appear to come from Google ... to persuade people into handing over their Google #account #credentials." https://tinyurl.com/47y6pvus
There are lots of #plugins/services that allow you to sync your #browser saved website #credentials across multiple devices; even #sync between ecosystems (chrome/google account <--> Microsoft acc).
But - leaving aside "password sharing is Baaaad" and "probably violates a TOS somewhere" issues - does anyone know of a plugin/service that allows you to share a saved login with a trusted other?
e.g. share an newspaper #subscription account with a partner _without_ a shared google account.
Anyone who is a non-citizen of the US -- important note here from the EFF.
(Not YET an issue for US citizens, but it's likely coming where this administration can apply pressure and/or if legal measures fail to stem these moves. i.e. "present your papers")
Anyone know someone at #JetBrains to report a #PyCharm #issue to?
Basically it's a #softlocking that happens on the #snap version of #PyCharmCommunity / #PyCharmCE that makes it somehow half-forget #credentials like #GitHub, #Gitlab, #Codeberg, #BitBucket, #Gitea, #git etc. and not allowing to just delete & re-add them as the settings saving just becomes unresponsive.
$HOME/.config/PyCharmCE****/... and randomly coming back after a few days or weeks.Whether this also conflicts with #SettingsSync which should only sync #configs, not #credentials (and AFAICT doesn't!) is also a question I can't confidently answer.
#ElonMusk staff Have #Infiltrated Another #Government Agency - Elon Musk’s former employees are trying to use [are using] #WhiteHouse #credentials to access General Services Administration #GSA tech, giving them the potential to remote into #laptops, read #emails, and more, sources say. mass #cybercrime attack against the federal government #infosec this #cybersecurity breach by non government agents is a crime. the damage will be irreparable. https://www.wired.com/story/elon-musk-lackeys-general-services-administration/ fed staff locked out of work
Anyone at @jetbrains / #JetBrains want to investigate an issue re: #PyCharm loosing #credentials or rather bugging them out at random?
It really pisses me off...
@jimbob #Outlook has been fucked up for decades as it crashed ages ago once the mailbox hits 2 GiB in size.
But that's just me as a #Sysadmin doing what I get paid for...
So, #PublicServants get paid squat.
The #passion of helping their #communities should be their #reward
Now, they can add #miner to their list of #credentials they get no credit for.
@ploum instead of @signalapp which also falls under #CloudAct and is also a #Proprietary, #SingleVendor & #SingleProvider solution, consider #XMPP+#OMEMO for real #E2EE with #SelfCustody of all the keys!
Fir #eMail & #Chat, I can recommend @monocles as a paid provider who doesn't run #ads and doesn't fall under Cloud Act or similar laws. (Also they have excellent #Apps that work with basically all providers usibg standard-compliant servers & APIs!)
You may want to consider #Torifying everything by using @guardianproject #Orbot and push everything on #mobile through @torproject / #Tor.
In fact, some providers like cock.li even have #OnionServices to directly connect to them.
#MicrosoftOutlook literally steals your Login #credentials, so using @thunderbird is a necessity anyway. Don't forget to change your logins either way!
#Firefox is okay, but #TorBrowser should be normalized as well.
Consider launching a @cryptoparty to teach other the same.
Nirmalize using @tails_live / @tails / #Tails as your #DailyDriver!
Actually... Does anyone know how often the #JAWS and #NVDA certifications should be retaken in order to be considered current? #accessibility #blind #SR #credentials
This is unfortunate because I received a pair of these recently that I've been meaning to take out of the package. I guess they won't be issuing recalls?
Hackers infect ISPs with malware that steals customers’ credentials - Enlarge (credit: Getty Images)
Malicious hackers likely workin... - https://arstechnica.com/?p=2045401 #vulnerabilities #credentials #volttyphoon #security #exploits #zerodays #malware #biz #isps
With all the fake content and identities around, this is a very ineresting paper:
"Personhood credentials: Artificial intelligence and the value of privacy-preserving tools to distinguish who is real online". It seems like the same what the EU is building with digital identity/wallet. Although i am not sure the details of implementation are as privacy preserving as this proposal ? 
https://arxiv.org/pdf/2408.07892
#AI #fake #digitalidentity #credentials #ZKP #privacy #AI
