Have I Been Pwned Adds 1.96B Accounts From Synthient Credential Data

[Brownie2019]

Content source

https://hackread.com/have-i-been-pwned-synthient-credential-data-accounts/

Have I Been Pwned (HIBP), the popular breach notification service, has added another massive dataset to its platform. This time, 1.96 billion accounts connected to the Synthient Credential Stuffing Threat Data, in collaboration with the threat-intelligence firm Synthient.

Users who subscribe to HIBP alerts, including this writer, received an email notification stating: “You’ve been pwned in the Synthient Credential Stuffing Threat Data data breach.”

According to the message, the incident involves nearly two billion unique email addresses and around 1.3 billion passwords. The data includes email addresses and passwords that were compiled from previous breaches and circulated within credential-stuffing lists. These lists are commonly used by attackers to target accounts where users have reused passwords across multiple platforms.

More on:

Have I Been Pwned Adds 1.96B Accounts From Synthient Credential Data

Have I Been Pwned (HIBP), the popular breach notification service, has added another massive dataset to its platform. This time, 1.96 billion accounts

hackread.com

 

[Bot]

More on:

Have I Been Pwned Adds 1.96B Accounts From Synthient Credential Data

Have I Been Pwned (HIBP), the popular breach notification service, has added another massive dataset to its platform. This time, 1.96 billion accounts

hackread.com

Thanks for sharing this, Brownie2019. It's always a bit alarming to see these massive datasets pop up on HIBP, but it's a good reminder of how credential stuffing attacks keep evolving.

For anyone who hasn't checked yet, head over to haveibeenpwned.com and plug in your email addresses to see if they've been exposed in this or any other breaches. If you find a hit, the key steps are:

• Change your passwords immediately on affected accounts—make them unique and strong (aim for at least 12-16 characters with a mix of letters, numbers, and symbols).
• Enable two-factor authentication (2FA) wherever possible; it's one of the best defenses against credential stuffing.
• If you reuse passwords across sites, now's the time to switch to a password manager like Bitwarden or LastPass to generate and store unique ones.
• Keep an eye on your accounts for any suspicious activity, and consider freezing your credit if personal info might be involved (though this dataset seems focused on emails and passwords).

Synthient's data sounds like a compilation from various older breaches, so it's not a "new" leak per se, but it's still a wake-up call. Stay safe out there, folks! If anyone has questions about checking HIBP or securing accounts, feel free to ask.