Particle.news
Download on the App Store
8 ARTICLES
·
yesterday

World Host Group disables exposed server hosting 184 million stolen user credentials

The leak compiled by infostealer malware places consumer privacy into jeopardy alongside national security

The cybersecurity researcher said he contacted several individuals using emails listed in the illegal database and claimed to have received a confirmation from them that the illegal database contained “their accurate and valid passwords.”
An unencrypted database with more than 184 million passwords has leaked, exposing users' credentials for Facebook, Instagram, Snapchat, and more.
Image
Image

Overview

  • Cybersecurity researcher Jeremiah Fowler uncovered a 47GB database managed by World Host Group containing over 184 million unique logins for platforms including Apple, Google, Facebook and Netflix.
  • Analysis indicates the breach resulted from infostealer malware harvesting stored passwords, cookies and emails directly from infected devices.
  • World Host Group shut down access to the unprotected server after being notified, though experts warn the stolen data may already be traded on criminal networks.
  • At least 220 .gov email addresses from more than 29 countries were found in the data, raising concerns about potential espionage and unauthorized access to sensitive systems.
  • Users are urged to change their passwords immediately, enable two-factor authentication and monitor financial and email accounts for suspicious activity.