16 billion login credentials for services such as Apple and Google have been leaked, potentially affecting cryptocurrency holders

According to Cointelegraph, the Cyber news research team has revealed that 16 billion login credentials from online service providers such as Apple, Google, and Facebook have been leaked, with the maximum record count from a single database alone reaching 3.5 billion. Researchers have found that this data is mainly exposed through unencrypted Elasticsearch or object storage instances, and the leaked data includes access tokens, session cookies, and account metadata stolen by information theft malicious programs. This incident poses a serious threat to the cryptocurrency industry: attackers may use leaked credentials to initiate targeted account takeovers, especially against platforms hosting wallets or associated email addresses. The practice of allowing some wallets to backup mnemonic words to cloud services amplifies the risk. Security experts recommend that users immediately update their passwords, enable two factor authentication, and avoid storing recovery phrases in non secure digital environments. At present, the identity of the original data holder is not yet clear, but researchers have confirmed that some databases may belong to cybercrime organizations.