"According to the company, there has been no security incident within Gmail itself, but rather misleading interpretations of data from existing credential collections. Reports of a Gmail security breach impacting millions of users are false. Gmail's defenses are strong, and users remain protected, Google said in a post on X. The rumors arose after several media outlets reported that 183 million Gmail accounts had been compromised."
"These reports followed an update to Have I Been Pwned (HIBP), security researcher Troy Hunt's platform, which added a new dataset on October 21 containing 183 million unique email addresses and associated passwords. This dataset, referred to as the Synthient Stealer Log Threat Data, contained data collected from various sources and threat intelligence platforms, according to HIBP. The data did not originate from a single data breach."
"According to BleepingComputer, it consists of information stolen over the years through malware, phishing campaigns, credential stuffing, and other forms of data theft. Hunt reported that approximately 91 percent of the dataset was already known from previous leaks. However, approximately 16.4 million addresses did not previously appear in the HIBP database. Other sources, including LadBible and GizChina, estimate that it is a collection of approximately 3.5 terabytes of data with billions of records, compiled by the Synthient threat intelligence platform."
Google says there was no security incident within Gmail and that reports claiming millions of accounts were breached are false. The claims followed a Have I Been Pwned update adding a dataset of 183 million email addresses and associated passwords labeled the Synthient Stealer Log Threat Data. The dataset aggregates credential dumps and infostealer logs compiled from malware, phishing campaigns, credential stuffing, and other data theft over years. HIBP noted roughly 91% of records were previously known while about 16.4 million addresses were new to its database. Google cautioned that such compilations are often misinterpreted and said Gmail takes proactive protective actions.
Read at Techzine Global
Unable to calculate read time
Collection
[
|
...
]