124 Million Unique Passwords Exposed
A newly added database of stolen login details includes 56 million email addresses and 124 million unique passwords gathered from past password-stealing infections. Even though this was not caused by one new company breach, the combined data can be used to break into many accounts, especially where people reused the same password.
Who is at risk
Anyone who has reused the same password across multiple accounts, especially email, banking, shopping, or social media accounts, is at higher risk.
What to watch for
Watch for unexpected sign-in alerts, password reset emails you did not request, locked accounts, or messages sent from your account that you did not write.
What to do
Immediately change reused passwords, start with your email and financial accounts, use a different strong password for each account, and turn on extra login verification wherever available.