183 Million Gmail Passwords Compromised in Massive 2025 Data Breach

A massive data breach disclosed in April 2025 has compromised over 183 million email passwords, affecting not only Gmail but also major providers like Outlook and Yahoo, according to cybersecurity expert Troy Hunt. The breach involves a vast 3.5 terabyte dataset containing 23 billion records, including email addresses, website URLs, and passwords, with around 8% being new credentials not found in previous leaks. This data was obtained primarily through infostealer malware and credential-stuffing attacks, posing significant risks of unauthorized account access and phishing. Users are strongly advised to check their email exposure on the Have I Been Pwned website, change their passwords immediately, and enable two-factor authentication (2FA) to enhance security. Experts also recommend using unique passwords across services, adopting password managers, and considering more secure authentication methods like passkeys. The breach highlights the ongoing threat of credential reuse and the increasing need for robust cybersecurity practices amid rising cybercrime activity.