Over 16 billion login credentials from services like Apple and Google have been leaked, which may affect cryptocurrency holders

ChainCatcher news, the Cybernews research team disclosed that 16 billion login credentials from online service providers including Apple, Google, and Facebook have been leaked, with a single database containing up to 3.5 billion records. Researchers found that this data was primarily exposed through unencrypted Elasticsearch or object storage instances, with the leaked data including access tokens, session cookies, and account metadata stolen by information-stealing malware.

The identity of the original data holders is currently unclear, but researchers have confirmed that some databases may belong to cybercriminal organizations. Attackers may exploit the leaked credentials to launch targeted account takeovers, particularly on platforms hosting wallets or associated email accounts. Security experts recommend that users immediately update their passwords, enable two-factor authentication, and avoid storing recovery phrases in non-secure digital environments.