Massive Credential Breach Exposes 149 Million Logins in Unsecured Database A security researcher recently uncovered a staggering data exposure involving 149 million usernames and passwords left unprotected on the internet. The database, hosted by a Canadian service provider, was freely accessible via a standard web browser, allowing anyone to search and extract sensitive login details without authentication. The breach remained active for about a month, with new credentials continuously added before the hosting provider took it offline following notification. The compromised data spanned a wide range of platforms, including: - Email services: 48 million Gmail, 4 million Yahoo, and 1.5 million Microsoft Outlook accounts - Social media: 17 million Facebook, 780,000 TikTok, and 100,000 OnlyFans logins - Streaming & entertainment: 3.4 million Netflix subscriptions - Financial services: 420,000 Binance cryptocurrency accounts, along with banking and credit card details - Government & education: 1.4 million .edu domain credentials and other official systems Investigators traced the breach to infostealing malware, which infects devices through phishing, malicious downloads, or compromised websites. The malware logs keystrokes and captures login credentials, funneling them into centralized databases like the one discovered. Each entry included unique identifiers, suggesting the database was designed for large-scale criminal operations, such as account takeovers or ransomware attacks. The implications of this breach are severe, with risks ranging from identity theft and financial fraud to potential espionage via compromised government and academic accounts. The incident reflects a broader trend of unsecured databases and the growing accessibility of cybercrime tools renting infrastructure for such operations can cost as little as $200–$300 per month, enabling even low-skilled threat actors to amass vast troves of data. While no immediate exploits have been confirmed, the exposure underscores persistent vulnerabilities in data security practices. Similar breaches have repeatedly demonstrated how quickly stolen credentials circulate on underground forums, prolonging the threat long after the initial leak. The full impact of this incident may unfold over time as attackers exploit the exposed information.

Massive Exposed Database Containing 149 Million Credentials Discovered Online Security researcher Jeremiah Fowler uncovered a publicly accessible database containing 149 million usernames and passwords, including credentials for major platforms and sensitive systems. The unsecured collection, which was freely accessible via a web browser, included 48 million Gmail accounts, 17 million Facebook logins, 420,000 Binance credentials, 3.4 million Netflix accounts, 780,000 TikTok logins, and 100,000 OnlyFans accounts. Additionally, it held 1.5 million Microsoft Outlook, 900,000 Apple iCloud, and 1.4 million .edu credentials, along with login details for government systems and consumer bank accounts. Fowler reported the database to the Canadian hosting provider, which took it offline after nearly a month for violating its terms of service. During this period, the database continued to grow, suggesting ongoing data collection. Fowler suspects the credentials were harvested via infostealing malware, which logs keystrokes when victims enter login details on compromised sites. The discovery highlights the thriving infostealer market, where stolen credentials are sold for as little as $10 per log on the dark web. The simplicity of such malware makes it a popular tool for cybercriminals, enabling large-scale credential theft with minimal effort. The incident underscores the risks of unsecured databases and the widespread impact of infostealer-driven breaches.

Trust Wallet Browser Extension Exploit Targets Cryptocurrency Users Trust Wallet, a popular cryptocurrency wallet provider, disclosed a security breach affecting users of its browser extension version 2.68. The vulnerability, which remained active for several days, was first flagged on December 24 after blockchain researcher ZachXBT detected unusual fund outflows from compromised wallets. The exploit specifically impacted users who entered private keys into the vulnerable extension, leading to unauthorized access and theft of assets. Affected cryptocurrencies included Ethereum (ETH), Bitcoin (BTC), and Solana (SOL), with some victims losing funds stored for years. The attacker funneled stolen tokens through intermediate addresses before cashing out via exchanges like KuCoin, HTX, ChangeNOW, and FixedFloat. Trust Wallet confirmed that only the browser extension was affected, urging users to disable version 2.68 and upgrade to version 2.69. Mobile and desktop versions remained secure. The company is investigating how the malicious version was uploaded to app stores under its official brand. In response, Changpeng Zhao (CZ), founder and former CEO of Binance, announced that all affected users would receive compensation. The full scope of the breach and the attack vector remain under investigation.

Gambaryan, an ex-IRS investigator and Binance executive, was jailed in Nigeria for alleged money laundering and tax evasion. He was invited to Nigeria to discuss issues between the Nigerian government and Binance, including accusations of money laundering and contributing to the devaluation of the Nigerian currency. His health has worsened in prison, requiring urgent medical care for a herniated disc. Though the charges have been dropped on medical grounds, he remains in Nigeria, and pressure from the US continues for his release. Gambaryan's case has drawn international attention, and congressional members have urged considering it a hostage scenario.

Tigran Gambaryan, head of Binance's investigations and financial crime compliance, is detained in Nigeria under accusations of money laundering and tax evasion related to Binance's operations. His detention and the charges levied against him have raised international concern, with US Congress members advocating for his immediate release. This incident has implications for Binance's reputation and could potentially disrupt the company's compliance operations. Gambaryan's track record as a federal agent combating crypto crimes emphasizes the irony of his current situation, providing a stark contrast to the accusations he now faces.

Binance, largest crypto exchange suffered a massive cyber which temporarily halted the operation of its Binance Smart Chain. The hackers stole $570 million from a blockchain linked with Binance. However, Binance resumed its operations of the BSC chain after releasing a software update that froze the hackers’ accounts.

One of the world’s largest cryptocurrency exchanges, Binance, has been breached, with criminal hackers stealing 7,000 bitcoins. The organisation confirmed that it had suffered a “large scale security breach” in a multi-layered attack. It was unfortunate that the company was not able to block this withdrawal before it was executed. The hackers used the information to make a single transaction, transferring the bitcoins from a hot wallet into an account they owned.