More than 1.6 billion login credentials from leading online service providers—including Apple, Google, and Facebook—have been leaked, potentially impacting cryptocurrency holders.

According to a report released on Friday, the Cybernews research team reviewed "30 exposed datasets, each containing records ranging from tens of millions to over 3.5 billion." In total, these datasets involve "an astonishing 1.6 billion exposed login credentials."

The report notes that "aside from a 'mysterious database' containing 184 million records, no previously unreported exposed datasets were found." Most databases average around 550 million records, while the smallest database contains over 16 million records.

Cybernews warns that this could serve as a basis for "mass exploitation," providing "a large-scale, weaponized fresh intelligence." It has been reported that most of the data was exposed through insecure Elasticsearch or object storage instances.

Cybernews states that this data allows access to "almost any imaginable online service, from Apple, Facebook, and Google, to GitHub, Telegram, and various government services." The data also includes information theft dumps, such as tokens, cookies, and metadata, which are particularly dangerous for organizations lacking multi-factor authentication.

According to the report, the original owners of the data remain unclear. Nevertheless, "it is almost certain that some of the leaked datasets are owned by cybercriminals."

The cryptocurrency industry may face serious consequences due to this leak. Security analysts expect an increase in targeted account takeover attempts using the leaked credentials against hosted wallets or platforms related to email access.

Some wallets also use password-based seed phrases backed up in cloud services, which may lead attackers to attempt to obtain private keys.

Depending on the extent and success of these attacks, exchanges may require users to change their passwords or take more drastic measures to prevent asset loss.

This leak also highlights ongoing issues such as password reuse and weak authentication practices. Cryptocurrency users should immediately update their passwords, enable two-factor authentication (2FA), and avoid storing recovery phrases in insecure digital environments.

Related: The U.S. Department of Justice seeks to seize $225 million in cryptocurrency related to "pig butchering" schemes.

Original article: “Over 1.6 Billion Login Credentials Leaked, Raising Cryptocurrency Security Concerns”

免责声明：本文章仅代表作者个人观点，不代表本平台的立场和观点。本文章仅供信息分享，不构成对任何人的任何投资建议。用户与作者之间的任何争议，与本平台无关。如网页中刊载的文章或图片涉及侵权，请提供相关的权利证明和身份证明发送邮件到support@aicoin.com，本平台相关工作人员将会进行核查。