Related Articles
**A total of 149 million login credentials were revealed as being used by **. This information has uncovered 420,000 Binance accounts, Instagram and Facebook, Roblox, dating sites and other platforms. ** **
Jeremiah Fowler, from ExpressVPN, said ‘The database exposed to the public was not encrypted and password protected. It had 149,404,754 unique login credentials and was 96 GB in size of raw data.
Millions of account logins leaked from Binance, Instagram, Google, and TikTok. Source: ExpressVPN blog.
The leaked data was open to the public
The database was open to the public, with . Anyone who discovered it would be able to get millions of people’s credentials. Those files were exposed to include emails, usernames, passwords and account login URL?
Data from social media sites such as Facebook, Instagram and TikToK (formerly Twitter) were also leaked records. OnlyFans accounts data, dating apps and onlydateledatele showed login methods for creators and users.
Fowler found leaked logins from many streaming accounts as well, such as Netflix, HBO Max, Disney+, and Roblox.
The small sample of records the cybersecurity researcher examined found financial service accounts, crypto wallets, Binance trading accounts and banking and credit card logins.
Both government accounts were not spared either. It was also found that logins associated with [dot]gov domains from a number of countries were related to log ins. These data could also be used to target targeted phishing or impersonation attacks, as well as other sensitive information. This could threaten national security and public safety,’ .
Database was hosted online but did not contain ownership details of the database. Fowler reported it to the hosting provider, and after almost a month hosted was suspended. The host provider declined to say who ran the database.
It is not clear whether the database was used for criminal activity, legitimate research or why it was publicly exposed. We do not know the length of database exposure for ? It may have been used by other people to read it.
A troubling detail is that the records kept growing until they became restricted and inaccessible, the cybersecurity researcher added.
The total number of records and the size of the exposed infostealer database. Source: ExpressVPN blog.
Infostealer malware collected logins and extra information
The database contained keylogging and infostealer malware, which secretly collect credentials from infected devices.
These files also recorded additional information, unlike old infostealer malware datasets. The records contained the “host_reversed path” in the. The structure, ” This organizes stolen data by victim and provides easy indexing for the information. A change in the hostname will prevent Directory conflict, and help avoid easy detection rules on common domain formats by reversing the hostsname.
Each unique log line was given a document ID by the system according to ‘line hash’, so that one record is distinct. They were unique hash and document IDs, with no duplicates found in a short check on these haveh or document identifications.
Several unique usernames and passwords are released, which is one of the most important security threats for many people who don’t know that their data was hacked. It may also allow criminals to automate attacks on accounts such as email, crypto wallets, social media and business systems. It also raises the profile of that is a significant risk for fraud, identity theft, financial crimes and phishing scams.
Malware steals login data and knowingly sends it to hackers. I don’t think changing passwords is a waste of time when there are malware and infostealers. The installation of antivirus software helps detect and remove malware from smartphones and computers completely.
Security[dot]org’s October report showed that about six6% of U.S.. s S In 2025 antivirus software was used by adults for the use of antivirus. Unprotected devices, which are exposed to Infostealer malware for many users, are also unprotective. Report $16. The cybercrime killed 6 billion in one year, reducing it to 6billion.
If someone thinks their device has malware, they should act right away.
Thanks for reading Data leak exposes 149M logins 420K linked to Binance
