Facebook, Apple, Google and Netflix hit by massive login and password data leak

The database is no longer online,but an expert recommended people update their passwords (Picture: SOPA Images/LightRocket via Getty)

Nearly 200,000,000 passwords have been exposed after digital thieves stole data tied to some of the world’s biggest tech firms. 

Lists of people’s login details were made available on a public database,including usernames,emails,passwords and,in some cases,financial data.  

Security experts are now warning people to change their passwords to minimise the risk.  

Among those targeted in the massive hack were:  

Google

Facebook

Microsoft

Apple

Snapchat

Roblox

PayPal

Netflix

Discord

Health platforms

Government platforms

The data is believed to have been stolen using a type of malicious software called infostealer malware,according to Website Planet.

This malware infects individual devices and secretly steals saved passwords,autofill data,documents,and browser cookies.  

It acts like a digital pickpocket,grabbing sensitive information stored on your computer or phone whenever you’re online.  

The report said it’s unclear if the database was used for criminal purposes (Picture: Bloomberg/Getty Images)

What you can do to keep yourself safe online

Change passwords every year: Most people have one main email they use,making it vital that passwords are changed regularly. Password managers are an easy way to keep track of whether any have been exposed.Use hard-to-guess passwords: As experts have told Metro before,don’t use ‘123456’ or ‘password’ or use the same one for different accounts.Switch on Two-Factor Authentication: This ‘crucial’ level of security,Fowler said,might make logging in more of a chore,but is the ‘price we must pay for secutity’.Invest in an antivirus software: These programmes can detect and delete malware,including infostealer malware and spyware.Cybercriminals then use this stolen data to break into other accounts,send fake messages (phishing),or commit identity theft. The database is no longer online after the company hosting the website was alerted.  Jeremiah Fowler,who discovered the breach,fears for the wider implications,particularly relating to email credentials being hacked.  He said: ‘Many people unknowingly treat their email accounts like free cloud storage and keep years’ worth of sensitive documents,such as tax forms,medical records,contracts,and passwords,without considering how sensitive they are. ‘This could create serious security and privacy risks if criminals were to gain access to thousands or even millions of email accounts.’ Fowler advises users to regularly delete old sensitive emails and use encrypted cloud storage instead of relying on email to store and share important documents.’