Leading UK security experts are warning consumers to be on red alert after 225 million passwords were found to have been leaked online. The National Crime Agency (NCA) says it recovered the shocking data breach from cybercriminals with real email addresses, accounts and full passwords.
In the wrong hands, this incredibly personal information could clearly leave millions at risk of cyberattacks or something called account hijacking – this is where thieves gain full control of private accounts which can then be used to scam other contacts or steal. money.
Now it is vital that everyone check to see if their passwords have been compromised in this latest breach.
The NCA says it has donated the entire list of accounts to the free online service Have I Been Pwned with anyone interested who can visit the site and enter their email address.
The service will then show if that account has been compromised. You can check your data here.
Anyone who sees a red warning sign after logging in to their account should change their password without delay to prevent criminals from accessing their data.
Troy Hunt, who runs the Have I Been Pwned service, revealed that they were already aware of around 600 million leaked passwords, but this new information is hugely significant as none of the 225 million passwords have been detected before.
“The UK’s National Crime Agency has done a wonderful job over the years to combat cybercrime.
“Before today’s announcement, there were already 613 million passwords on the live Pwned Passwords service, so the NCA corpus represents a significant increase in size.
“Working in collaboration with the NCA, I found 225,665,425 completely new passwords.”
Speaking about the rape, the NCA added: “The mission of the UK National Crime Agency (NCA) is to protect the public by leading the UK’s fight to eliminate serious and organized crime.
“During NCA’s recent operational activity, the team was able to identify a large number of potentially compromised credentials (associated emails and passwords) on a compromised cloud storage facility. Through analysis, it became clear that these credentials were an accumulation of known and unknown breached data sets.
“As a result of this activity, the NCA provided HIBP with more than 225 million compromised passwords that HIBP had not previously seen to incorporate into its password repository, allowing them to be verified by individuals and companies around the world who seek to verify the security risk of a password before use, supporting the NCA’s mission to protect the public from cybercrime. “