The data sets, likely compiled by cybercriminals and possibly white-hat researchers using infostealing malware, vary widely in size—from millions to billions of entries, News.Az reports, citing TechRadar.
The compromised data includes accounts from major platforms such as Google, Apple, GitHub, Telegram, and several VPN services. Notably, only one of the 30 datasets had been previously reported—a mysterious trove of 184 million records—raising concerns about the scale and secrecy of the remaining breaches.
“It barely scratches the top 20 of what the team discovered,” Cybernews explained. “Most worryingly, researchers claim new massive datasets emerge every few weeks, signaling how prevalent infostealer malware truly is.”
The databases were available to the wider internet only briefly, and were quickly locked down - however, it wasn’t possible to determine who the owners are.
It is probable that many of the information overlaps, making it virtually impossible to determine exactly how many people were affected. It’s also important to note that some 5.5 billion people have access to the internet today, meaning that many people have multiple compromised accounts.
Unprotected databases continue to be the most common cause of data leaks. For years, security researchers have been warning that many organizations do not understand the shared responsibility model of cloud services, and that they are required to safeguard and secure the data they generate.
