24 Billion Credentials Exposed in Massive Infostealer Leak

An enormous cache of 24 billion credentials surfaced in a publicly accessible 8.3 terabyte database, exposing usernames, email addresses, plaintext passwords, and login URLs for potentially billions of people worldwide.

Researchers at Cybernews identified the collection on June 17, 2026. The data originated from infostealer malware logs, Telegram channels, breach compilations, and 36 distinct datasets. The database remained openly available until it was taken down following public reporting. Industry research from sources such as DoxxScan™ continuous monitoring confirms the scale and nature of the incident as one of the largest credential exposures recorded.

This breach matters because the records contain plaintext passwords that require no cracking. If you reuse the same password across multiple services, attackers can immediately test your credentials on banking sites, email accounts, social media, and shopping platforms. For your family, the risk extends to shared email addresses, children’s accounts, and any login tied to the same household details. A single exposed credential can unlock medical records, school portals, or family photos stored in the cloud.

The doxxing and identity-chain implications are particularly concerning. Infostealer logs often capture not just one password but dozens of saved credentials, browser cookies, and autofill data from the same infected device. Attackers can link your email address to usernames on gaming platforms, forums, and social apps. Once those connections are mapped, it becomes straightforward to build a complete profile that includes your home address, phone number, and family members’ names. Credential leaks like this one frequently cascade into account takeovers that lead to harassment, extortion, or further data sales on underground markets.

What to do

• Run a DoxxScan to map every link between your handles, emails, phone numbers, and real-world identity so you can see exactly what chains exist before attackers exploit them.
• Rotate every password used on the breached services and any site where that same password was reused, then replace it with a unique passphrase stored in a password manager.
• Enable continuous DoxxScan monitoring across 15.4 billion breach records and more than 100 platforms so the next time your information appears it is caught and addressed within hours rather than months.
• Cover the entire household with DoxxScan family protection, which includes dependents and children’s gaming accounts that often chain back to the same email address or home network.
• Let remediation specialists handle the takedown requests across data brokers and exposed profiles while you focus on securing your daily accounts.

The speed at which stolen credentials circulate means the difference between early containment and prolonged exposure can be measured in days. Starting with a clear map of your digital footprint and maintaining continuous oversight gives you and your family the best chance of staying ahead of the next leak. DoxxScan by GalaxyWarden delivers that continuous monitoring across 15.4B+ breach records and 100+ platforms, AI-powered identity-chain mapping, hands-on remediation by specialists, and household coverage that explicitly includes children’s gaming accounts.

Source: https://cybernews.com/security/24-billion-credentials-data-leak/