Earlier this month, the hacker community exposed a huge 87GB database called Collection #1. Security researcher Troy Hunt points out that it includes about 773 million email addresses and 21 million passwords. However, the latest news that there is another 845GB database outflow (Collection #2-5), which contains 25 billion records, involving 2.2 billion unique usernames and passwords.
Security researchers say that most of the data on the dump involves old vulnerabilities in companies such as Yahoo, LinkedIn, and Dropbox, but some of the data is relatively new.
Chris Rouland, a founder of the Internet of Things security company Phosphorus.io, said, “this is the biggest collection of breaches we’ve ever seen. It’s an unprecedented amount of information and credentials that will eventually get out into the public domain.” Worse, it has been widely circulated in the hacker community. Rouland said that as of yesterday, it has been “seeded” by more than 130 people and downloaded more than 1,000 times.
If you want to check whether your data is on these lists, please refer to the inquiry tool provided by the Hasso Plattner Institute.