Nearly 22 Million User Passwords & Email Addresses Dumped on a Hacking Forum

  • A collection of usernames and passwords from multiple data breaches was posted on a hacking forum.
  • The data contains close to 22 million passwords and over 772 million email addresses.
  • A report was published by security researcher Troy Hunt to inform users about the breach.

A large-sized folder (87 GB) dubbed "Collection #1" was dumped on hacking forums recently. The folder contains over 772 million email addresses of which 82% were already listed on security researcher Troy Hunt’s website. On top of the email addresses, nearly 22 million passwords were also available in the folder, but fortunately, all of them are old passwords and are not active. The downloadable folder is no longer available on the forum.

The emails and passwords were collected from a number of data breaches that date all the way back to 2008. If you want to know if your email is one of them, you can search for your email on Troy Hunt’s website Have I Been Pwned or use Mozilla’s service (Firefox Monitor) that is partnered with Hunt for providing alerts whenever a registered user is affected by a data breach or leak. The service is free and does not collect any user data.

Hunt wrote on his blog: "Like many of you reading this, I've been in multiple data breaches before which have resulted in my email addresses and yes, my passwords, circulating in public. Fortunately, only passwords that are no longer in use, but I still feel the same sense of dismay that many people reading this will when I see them pop up again."

Users who see their emails on the list should change all of their passwords immediately. Hunt revealed that it is much better to have passwords written down than use the same passwords for multiple services. Password management services are available and other option internet users have is to use hardware authentication keys. A number of online services support hardware and biometric 2FA, which are far more secure than using standard SMS or email-based authentication methods.

What do you think about the data leak affecting 772 million email accounts? Let us know in the comments below. Also, don’t forget to follow us on Facebook and Twitter. Thanks!

Sanderson Farms Championship 2023 Live Stream: How to Watch Golf Online from Anywhere
The FedExCup Fall continues this week in the PGA Tour, and the next event on the calendar is the Sanderson Farms Championship....
Alfred Dunhill Links Championship 2023 Live Stream: How to Watch Golf Online from Anywhere
One of golf’s most storied events is all set to take center stage this week as part of the European Tour. The...
How to Watch ICC Cricket World Cup 2023 Online Free: Live Stream Cricket from Anywhere
The greatest cricket extravaganza is upon us, and ten teams will compete to be crowned the best in the world. The ICC...
For a better user experience we recommend using a more modern browser. We support the latest version of the following browsers: For a better user experience we recommend using the latest version of the following browsers: Chrome, Edge, Firefox, Safari