ISLAMABAD: Pakistan’s National Cyber Emergency Response Team (N-CERT) has issued a nationwide cybersecurity alert after the discovery of a major global data breach that has exposed over 1.8 billion records, including 184 million unique passwords.
The leaked credentials are linked to widely used platforms such as Google, Microsoft, Facebook, Apple, Instagram, and Snapchat.
In a public advisory, N-CERT urged all users to take immediate steps to secure their online accounts.
“Change your passwords on all critical accounts, especially if reused across platforms. Enable Two-Factor Authentication (2FA) where available, avoid clicking on suspicious links, and monitor your accounts for unusual activity,” the advisory stated.
The alert comes after cybersecurity researcher Jeremiah Fowler uncovered an unprotected online database containing millions of sensitive credentials.
In an article published by ZDNet, Fowler revealed that the database, which had no encryption or password protection, held usernames, email addresses, passwords, and URLs connected to a wide array of services, including banking platforms, healthcare websites, and government portals.
According to Fowler, the exposed data appears to have been collected using infostealer malware—a type of malicious software that covertly extracts sensitive information from compromised systems.
“Infostealers are commonly deployed by cybercriminals to gather login credentials and other personal data, which can then be used in attacks or sold on the dark web,” he explained.
Fowler contacted the hosting provider, which subsequently removed the database from public access. However, the provider did not disclose the identity of the database’s owner, leaving it unclear whether the exposure was accidental or intentional.
To verify the legitimacy of the data, Fowler reached out to individuals listed in the database; several confirmed that their credentials were accurate.
The exposed data presents a wide range of threats to individuals, businesses, and governments. Fowler warned of the dangers of credential stuffing attacks—where hackers use stolen passwords to gain access to multiple accounts, particularly if users recycle the same passwords across platforms.
He also highlighted risks such as identity theft, account takeovers, ransomware attacks, and corporate espionage.
“Many people unknowingly treat their email accounts like free cloud storage, keeping years of sensitive documents such as tax forms, medical records, and passwords. This practice can lead to serious security and privacy risks if compromised,” he noted.
The breach also revealed credentials belonging to government employees across different countries, potentially enabling attackers to target state institutions.
Leaked email conversations and contact histories could further be exploited in phishing and social engineering scams.
How users can protect themselves
- Change passwords regularly, especially if there’s any suspicion of compromise.
- Use complex and unique passwords for every account.
- Consider using a reputable password manager, while keeping the master password secure.
- Enable Multi-Factor Authentication (MFA) on all accounts, particularly for financial services and password managers.
- Use online services such as “Have I Been Pwned” to check if your credentials have been exposed.
- Monitor account activity and enable alerts for suspicious login attempts.
- Install and regularly update reliable security software to detect infostealer malware and other threats.
