26 billion records have been leaked in 'Mother of all Breaches,' but don't freak out

You've probably been impacted, but it isn't as bad as it sounds.
By Amanda Yeo  on 
An illustration of a masked thief running while carrying network or technology or circuit board lines.
Credit: rob dobi / Getty Images

A database of 26 billion leaked records has been discovered, in what has been called the "Mother of all Breaches." Fortunately, it actually isn't as bad as it sounds.

The massive 12-terabyte leak was discovered by cybersecurity researcher Bob Dyachenko, working alongside the team at Cybernews. It isn't clear exactly who is responsible for the database, however it contains both credentials and sensitive data.

This is undoubtedly bad news. It's never good to have your personal data left exposed online, where anyone can find and utilise it for nefarious purposes. However, the situation is far from as disastrous as it appears. 

The leak is in fact a compiled collection of data from thousands of previous breaches, and doesn't appear to contain any new information. If you've kept up to date on your security, you should have little more to fear than you did yesterday. It's also reasonable to expect that some of the records are duplicated, so there may not necessarily be 26 billion unique records.

Even so, this doesn't mean you should be complacent. Given the sheer volume of data and the number of leaks it covers, there's a high chance your data is included, even if it's from a breach which occurred years ago that you already know about. It's a good reminder to refresh your security hygiene, and maybe change a few passwords.

Tencent was the most heavily impacted by the leak, with 1.5 billion records in the compilation. It was followed by Chinese social media platform Weibo at 504 million, MySpace at 260 million, Twitter at 281 million, and Wattpad at 271 million. Other brands included LinkedIn, AdultFriendFinder, Adobe, MyFitnessPal, and Canva

Government organisations weren't spared either, with the US, Brazil, Germany, Turkey, and the Philippines among those swept up in the compiled database.

You can use tools such as Have I Been Pwned or Cybernews' data leak checker to find out whether you've been the victim of a data breach. And if you haven't already, consider using a password manager. It may not prevent leaks, but it will make using unique passwords for all your accounts a lot easier.

Topics Cybersecurity

Amanda Yeo
Amanda Yeo
Reporter

Amanda Yeo is Mashable's Australian reporter, covering entertainment, culture, tech, science, and social good. This includes everything from video games and K-pop to movies and gadgets.


Recommended For You
Ransomware gang claims it stole data from Subway. Yes, the sandwich chain.
Subway store

The White House is cracking down on brokers selling your data to China and Russia
President Biden making a speech at a podium in front of American flags


The best VPN for ChatGPT
Robot hand touching human hand

Wyze security camera breach impacted over 900 times more people than originally thought
A surveillance camera from smart home company Wyze isolated on white background.

Trending on Mashable
NYT Connections today: See hints and answers for March 9
A phone displaying the New York Times game 'Connections.'

Wordle today: Here's the answer and hints for March 9
a phone displaying Wordle

NYT Connections today: See hints and answers for March 8
A phone displaying the New York Times game 'Connections.'

Wordle today: Here's the answer and hints for March 8
a phone displaying Wordle

The biggest stories of the day delivered to your inbox.
This newsletter may contain advertising, deals, or affiliate links. Subscribing to a newsletter indicates your consent to our Terms of Use and Privacy Policy. You may unsubscribe from the newsletters at any time.
Thanks for signing up. See you at your inbox!