16 billion passwords leaked in violations affecting Google, Apple and Facebook

newYou can listen to Fox’s news articles!

Your personal data is collected by almost every site or app you visit. The world is now the most important asset and is even more valuable than oil, making it data starving than ever. Your shopping history is recorded, your search history is captured, and your phone number, email address and ID are all stored. But that doesn’t mean that all of this data is safe. If you have received spam calls, phishing emails, or fake support calls, you have personal data.

Also, if you need evidence of how poor your data is, a newly discovered database will provide you with a rigorous reminder. The report shows that over 16 billion login credentials collected from years of past data breaches are grouped into one of the largest aggregate archives of cybersecurity incidents seen to date.

Sign up for my free CyberGuy Report
Get my best tech tips, emergency security alerts, and exclusive transactions directly to your inbox. Plus, you’ll get instant access to my ultimate scam survival guide. It’s free if you participate.

10 Signs Your Personal Data is sold online

Woman working on a laptop (Kurt “Cyberguy” Knutsson)

What you need to know about 16 billion password data breach affecting Google, Apple and Facebook

CyberNews The exposed database is described as a “blueprint for mass exploitation.” The record includes login credentials from popular platforms such as Google, Facebook, and Apple.

Security researchers emphasize that this is not the result of a new single violation. Instead, this is a large collection of previously stolen qualifications from various past leaks, phishing scams, and third-party data exposures, some of which have been forgotten, underreported or re-shared.

Bleeding computer, Cybersecurity sites that reviewed the archives confirmed that the data appears to be aggregated from old violations rather than fresh incidents. This makes the range of exposure particularly dangerous, as attackers can use this central trobe for target attacks that include qualification packing.

Entitlement stuffing becomes much easier when an attacker accesses such a huge pool of usernames and passwords. This technique utilizes the fact that many users reuse the same credentials using the details of stolen logins from multiple sites. So, even if your account wasn’t part of a recent violation, you could still be at risk if your old credentials are part of this new, indexed compilation.

Illustration of a hacker at work (Kurt “Cyberguy” Knutsson)

doubleclickjacking hack turns double clicks and considers acquisitions

How Google and Meta are responding to massive password leaks

Google contacted Apple and meta For comments.

A Google spokesman said the issue was not caused by Google data breach, and Google continues to strongly encourage users to adopt a more secure, passwordless authentication method. PassKey. They also suggest using tools like Google Password Manageryou can store your password securely, notify you when you are involved in a violation, and take action immediately.

A Meta official said, “We are considering this and we have no statements to share at this time,” but provided. Tips for protecting your accounta Security Checkup Tool,and Introducing PassKeys On facebook.

There was no reply from Apple before the deadline.

A Google spokesman revealed in a statement given to the media that the company is not the source of the leak. Instead of raising alarms, Google encourages users to adopt safer practices. These include using a new form of authentication that relies on biometric data or device pins instead of traditional passwords.

Google also advertises it The password manager warns users if any of the stored credentials are publicly available. This tool automatically generates strong passwords and can be encrypted across your device.

Meta is taking the same steps by deploying support for the Facebook mobile app PassKeys. Although recruitment remains low, the company shows that passwordless login is the future of secure access. These changes reflect changes into a growing industry and cannot cultivate or reuse authentication methods.

We reached out to Apple, Google and Meta for comment but did not receive a response before the deadline.

What is Artificial Intelligence (AI)?

Google Smartphone (Kurt “Cyberguy” Knutsson)

Malware reveals 3.9 billion passwords with huge cybersecurity threats

Apple, 5 important ways to protect yourself after a Google data breach

As credential leaks become a growing threat, smart security habits and trustworthy tools are combined to protect your data. Below are five effective ways to keep your information safe:

1. Using the Password Manager: Infostealer malware is often targeted to passwords stored directly in web browsers, making it easy to target. Instead of relying on a browser to store your credentials, use a dedicated password manager that offers zero-knowledge architecture and military-grade encryption to keep your data safe. The best option works on all devices and browsers, provides secure sharing, monitor data breaches, and generate password health reports. Get my details Find the best expert reviewed password managers of 2025 here.

2. Enabling 2-factor authentication (2FA): Even if your credentials are stolen 2FA Adds an additional layer of security by requesting second form of verification, such as verification of authentication app code and biometric authentication. Cybercriminals rely on stolen usernames I have a password that breaks into my account, but with 2FA enabled, I can’t access it without additional security steps. Please enable 2FA on important accounts such as email, banking, or work-related logins.

3. Use powerful antivirus software and beware of downloads and links. Infostealer malware spreads through malicious downloads, phishing emails and fake websites. Do not download software or files from unreliable sources. Always double-check the link before clicking. It is recommended that attackers stick to official websites and app stores for download, as they disguise the malware as legitimate software, game cheats, or crack applications.

The best way to protect yourself from malicious links is to install antivirus software on all your devices. This protection can also warn you that it will phish email and ransomware fraud and keep your personal information and digital assets safe. Get the best 2025 Antivirus Protection Winners picks for Windows, Mac, Android and iOS devices.

4. Update your software: Cybercriminals leverage outdated software to provide malware. Keep your operating system, browser and security software up to date Ensures that known vulnerabilities are patched. Install reputable antivirus or endpoint protection software that enables automatic updates whenever possible and allows you to detect and block Infostealer threats before compromise your system.

5. Please consider the Personal Data Deletion Service. The massive leak of 16 billion credentials shows how far your personal information can spread, and how easily it can resurface in a hacker database, tallied several years later. Even if your password is part of an outdated violation, data such as your name, email, phone number, or address may continue to be available through the Data Broker Site. Personal Data Deletion Services can help reduce exposure by scrubbing this information from these sites. The service cannot guarantee a complete deletion, but it significantly reduces your digital footprint, making it difficult for scammers to use public data to expose or target you. These services monitor and automatically delete your personal information over time. This gives you peace of mind in today’s threat situations. Please see the top picks for data deletion services.

Get it Free scan To find out if your personal information is already on the web

Chaos ransomware hits optimal tax mitigation and leaks 69GB of data

Important points of cart

A password is not enough anymore. That’s why I’ve always believed that tech companies should place them completely in stages and require two-factor authentication across the board. Passwords were once the basis of online identity, but are now one of the weakest links. Companies like Google and Meta are already building systems that move beyond that. Tools are available. The message is clear. There’s no need to wait for a violation to take security seriously.

Click here to get the Fox News app

Do you think high-tech companies are investing well in cybersecurity infrastructure? Write us a letter and let us know cyberguy.com/contact.

For more information about my tech tips and security alerts, sign up for our free Cyberguy Report Newsletter cyberguy.com/newsletter

Ask us a question in our cart or let us know what you want us to cover

Follow your cart on his social channels

Answers to the most asked Cyber Guy questions:

New from Cart:

Kurt “Cyberguy” Knutsson is an award-winning tech journalist who loves technology, gear and gadgets that will make your life better with his Fox News & Fox Business contributions in the morning of “Fox & Friends.” Do you have any technical questions? Get our free Cyber Guy Newsletter in Cart and share your voice, story ideas, or comments cyberguy.com.

Flash News

Maine legislators’ rights to speak have been restored after trans athlete inspections

AI companies are throwing a million dollars salary at AI Phds

What is a Heat Dome? Scary weather phenomenon returns to kick off summer

Trump says Fed Chairman Powell is “low IQ” and keeps interest rates high

Goalless stalemate during the sunset of Fulminence and Mamelody

Waystar Holding Officer Sinclair sells $390,000 shares