Researchers have uncovered one of the largest credential exposures ever discovered.
They found a publicly accessible Elastic-search database containing a staggering 24 billion stolen records, totalling over 8.3 terabytes of data.
The massive dataset was pulled together from 36 distinct sources.
These included cybercrime-focused Telegram channels, prior breach compilations, info-stealer logs, and datasets exported directly from live servers.
The bulk of the records—roughly 22.6 billion—were categorized as "collections," likely aggregated info-stealer data from previous campaigns.
Another 1.7 billion records were linked specifically to Telegram sources.
Most entries contained sensitive information, including usernames, email addresses, plaintext passwords, and login URLs.
Researchers warned that the leak is incredibly dangerous simply because of its enormous size.
The database was secured shortly after discovery, limiting the team's ability to remove duplicates.
Experts urge users to check if their credentials were leaked and enable multi-factor authentication.
See What’s Next in Tech With the Fast Forward Newsletter
Tweets From @varindiamag
Nothing to see here - yet
When they Tweet, their Tweets will show up here.




