A huge database of at least 26 billion leaked records, being said to be the "Mother of all Breaches," has been uncovered on an unprotected page, the media has reported. According to a report in Forbes, this discovery is possibly the largest breach to date, and includes sensitive data from platforms such as X, formerly Twitter, Dropbox, LinkedIn and Adobe. Security researchers from Security Discovery and Cybernews spotted the breach, revealing that the leaked data spans 12TB in size.


Security researchers have said that they have uncovered a database with a minimum of 26 billion leaked data records.


Details Of The Massive Data Leak Discovered By Security Discovery And CyberNews


Security Discovery and CyberNews researchers have revealed that the recently found leaked data database is a massive 12 terabytes in size, earning it the title of MOAB. The team od security researchers believes that the 26 billion record database, discovered on an unsecured storage instance, may have been assembled by a malicious actor or data broker.


They have further warned that threat actors could exploit the aggregated data for various attacks, such as identity theft, sophisticated phishing schemes, targeted cyberattacks and unauthorised access to personal and sensitive accounts.


Sensitive Data Leak From Chinese And US Tech Giants Breached


In addition to data from Chinese messaging giant Tencent and Chinese social media platform Weibo, this leaked database contains records from users of various platforms and services, including Twitter (now known as X), Dropbox, LinkedIn, Adobe, Canva and Telegram. Alarmingly, the researchers note the presence of records from a variety of US and other government organisations, the Forbes report noted.


The somewhat positive aspect of this discovery is that much of the data seems not to be new; rather, it consists of compiled records from numerous past breaches and leaks. However, the researchers highlight the presence of many duplicate data records within this compilation. Despite this, the inclusion of usernames and password combinations remains a big concern. Anticipating a potential increase in credential stuffing attacks in the coming weeks is reasonable, given the circumstances.