Gmail Usernames and Passwords Leak Exposes Millions

A major Gmail usernames and passwords leak has exposed login details of millions of users worldwide. Cybersecurity experts warned users to act quickly and secure their accounts.

Reports said nearly 48 million Gmail usernames and passwords appeared in a leaked database. The total number of leaked login credentials reached close to 149 million across multiple platforms.

Cybersecurity researcher Jeremiah Fowler revealed the discovery. He said the database had no password protection and no encryption. It contained about 96 GB of sensitive credential data.

Investigators confirmed that hackers did not directly breach Gmail or other services. Instead, old data breaches and infostealer malware collected the information over time.

Experts explained that infostealer malware infects personal devices. It silently records usernames, passwords, and other private data from users.

Read Also: Google Introduces Gmail Email Address Change Feature

The leaked database also included accounts from Yahoo, Instagram, Netflix, Facebook, and Outlook. It contained logins linked to government offices, streaming services, and banking platforms as well.

After more than a month of effort, authorities took the database offline. Security analysts said such data holds high value for cybercriminals. Hackers often use it for credential stuffing attacks across multiple platforms.

Google confirmed awareness of the issue. The company stated that the data came from accumulated infostealer logs. Google added that its automated systems detect compromised credentials, lock affected accounts, and force password resets.

Security experts advised users to change passwords immediately. They urged people to avoid using the same password on different services. Experts also recommended enabling two-factor authentication and using password managers or passkeys.

The Gmail usernames and passwords leak highlights the growing risks of cyber threats and the need for stronger online security practices.