Massive data breach exposes 183 million email passwords, including Gmail accounts
California: A massive data breach has emerged online, compromising millions of email accounts along with their passwords, with a significant number reportedly linked to Gmail users.
The breach, affecting over 183 million records, was recently discovered and added to the Have I Been Pwned (HIBP) database, a widely used platform that allows users to check whether their credentials have been compromised.
According to a report published by India Today, the exposed dataset, called “Synthient Stealer Log Threat Data,” is among the largest email-password leaks reported in recent months.
However, Google’s servers were reportedly not breached. The stolen information reportedly originated from devices infected by malware. The device collected credentials directly from users’ browsers and computers rather than Gmail’s internal systems.
Cybersecurity expert Troy Hunt, who runs HIBP, said the data came from logs created by infostealer malware, malicious programs that silently record login information, browser cookies, and authentication tokens from infected systems. “This wasn’t the result of a single company being hacked,” Hunt noted. “It’s a collection of information stolen from numerous compromised devices across the world.”
With 183 million unique email addresses paired with plaintext passwords, the dataset was uploaded to HIBP on October 21, 2025. Many of these mail ids are associated with Gmail. Analysts say plaintext storage has increased risk, as attackers can immediately use or sell the credentials on dark web marketplaces.
Warning has been issued by security experts that infostealer malware not only steal login credentials but it is also capable of intercepting browser cookies and authentication tokens, which will allow scammers to bypass two-factor authentication in certain cases.
While Google stated that its systems were not breached, it recommended users utilize its Security Checkup tool to identify suspicious devices or third-party apps linked to their accounts.
“Reports of a Gmail security ‘breach’ impacting millions of users are entirely inaccurate and incorrect,” New York Post quoted a Google spokesperson as saying.
“They stem from a misreading of ongoing updates to credential theft databases, known as infostealer activity, whereby attackers employ various tools to harvest credentials versus a single, specific attack aimed at any one person, tool or platform," the spokesperson added.
In a report published by Yahoo News, Michael Tigges, a security analyst at Huntress noted, “The event here is not one of any specific data breach, but instead aggregated and uploaded data from millions of stealer malware log.” He further added that the attack should serve as a warning to anyone who relies on their web browsers to store credentials.
According to security experts from Cyber Insider and Forbes, the main problem is password reuse across many platforms. Experts further added that users make it easy for the attackers to gain access to banking, shopping, or workplace systems associated with the same email address by using the same passwords for several accounts. They recommended users to opt for hardware-based security keys or passkeys instead of SMS verification for stronger protection.
Users can check whether their data was exposed on (https://haveibeenpwned.com/). They are also advised to protect their accounts by immediately changing the passwords, using a unique, strong combination password, and enable two-factor authentication, if they find their credentials at risk.
Let the Truth be known. If you read VB and like VB, please be a VB Supporter and Help us deliver the Truth to one and all.
Prasidh, Kuldeep limit South Africa to 270 after De Kock's hundred
Visakhapatnam (PTI): India fought back gallantly through Prasidh Krishna and Kuldeep Yadav after Quinton de Kock struck his 23rd hundred, keeping South Africa to a manageable 270 in the third and series-deciding final ODI, here Saturday.
India won the toss after judging the spin of the coin incorrectly 20 times in a row. They had little hesitation in inserting the Proteas into bat, a clear indication of dew factor dominating the thought.
After Arshdeep Singh sent back Ryan Rickelton early, De Kock (106, 89b, 8x4, 6x4) struck his seventh century against India and put on 113 runs off 124 balls with skipper Temba Bavuma (48, 67b) as the visitors moved to a healthy position.
De Kock was severe on Prasidh (4/66), who erred on length continuously in his first spell (2-0-27-0). The left-hander biffed the pacer for 6, 6, 4 in his second over to milk 18 runs.
The 32-year-old quickly pounced on anything that was short, and pacers Prasidh and Harshit offered him plenty of feed on his pet areas.
Bavuma was more sedate, and made runs through those typical dabs and jabs, occasionally unfurling a drive of elan.
De Kock moved to fifty in 42 balls, and never let the tempo down reaching his hundred in 79 balls.
India found temporary relief when Ravindra Jadeja induced a false slash from Bavuma to get caught by Virat Kohli at point.
The tourists got another move on through a 54-run partnership between De Kock and Matthew Breetzkle for the third wicket, and at 168 for two in 28 overs they were in a good position to press on.
But Breetzke's punishment of part-time spinner Tilak Varma forced a rethink in the Indian camp, as skipper KL Rahul brought back Prasidh for a second spell.
What a masterstroke it turned out to be! The Karnataka man broke the back of South Africa’s top and middle order in an exceptional second spell (4-0-11-3).
Breetzke was the first man to go, trapped plumb in front with a straight one and four balls later Aiden Markram uppishly chipped a fuller delivery to Kohli at short covers.
Prasidh soon castled De Kock, whose ugly cross-batted swipe failed to connect a full length delivery from the pacer.
All of a sudden, SA found themselves at a shaky 199 for five, losing three wickets in the space of three overs.
Once Prasidh was done away with the top and middle-order, left-arm wrist spinner Kuldeep (4/41) took over and mopped up the tail as SA fell short of even a par total on this track.
