20.06.2025 11:05

A massive data breach has exposed an unprecedented 16 billion login credentials, posing a significant threat to the cryptocurrency community. This staggering figure encompasses access details for numerous crypto exchanges, wallets, and trading platforms, highlighting the vulnerability of the digital asset ecosystem.

Experts are sounding the alarm, emphasizing that this isn't simply a rehash of old data. The leaked information includes freshly harvested data from infostealer malware, revealing actively exploited accounts and posing an immediate danger. This influx of compromised credentials fuels a wave of phishing attempts, account takeovers, and targeted cryptocurrency theft, impacting both individual users and major institutions alike.

While the cryptocurrency world focuses on fluctuating token prices and novel blockchain technologies, this silent catastrophe unfolds. An investigation by cybersecurity researchers uncovered nearly 16 billion login records linked to popular platforms, including Binance, Coinbase, MetaMask, and Trust Wallet, among others. These records originated from various sources, ranging from infostealer malware infections to compromised databases, underscoring the wide-ranging nature of the threat.

Contrary to older data breaches, this leak presents a current and active threat. The dataset contains up-to-date tokens, cookies, and session data, indicating that the malware remains operational into 2024. This is particularly alarming, as such data facilitates session hijacking and credential theft, circumventing even basic security measures like two-factor authentication (2FA), which should be mandatory across the board. The compromised data extends beyond simple usernames and passwords, encompassing authentication tokens for web sessions, private key files for browser-based wallets, and application programming interface (API) keys. This sophisticated level of data theft represents a severe risk to users' funds and privacy.