183 million credentials, including confirmed Gmail login details, has been added to the Have I Been Pwned database. The data, sourced from infostealer malware logs, highlights the persistent threat of credential-stealing software and the critical need for multi-factor authentication and passkeys.
Australian data centre leader AirTrunk, backed by Blackstone, has struck a US$3 billion deal with Saudi Arabia’s HUMAIN, aligning with the Trump administration’s push for Western AI dominance. The partnership cements the Gulf as the new frontier for AI infrastructure and geopolitical tech power.
US pharmacy benefit manager MedImpact Healthcare Systems has confirmed a ransomware attack by the prolific Qilin gang. The group claims to have exfiltrated 160GB of data, including financial operation details and claims reports, raising significant concerns for the healthcare sector.
183 million credentials, including confirmed Gmail login details, has been added to the Have I Been Pwned database. The data, sourced from infostealer malware logs, highlights the persistent threat of credential-stealing software and the critical need for multi-factor authentication and passkeys.
Cyber News Centre’s cyber update for 30th October 2025: Infostealer malware logs containing 183 million account credentials have been added to the ‘Have I Been Pwned’ database.
The dataset compiles usernames and passwords stolen from personal computers infected by various infostealer malware strains over time. This is not the result of a single corporate breach but rather a large-scale aggregation of credentials taken directly from compromised user devices.
The Update: More than 183 million unique account credentials have been added to the Have I Been Pwned (HIBP) database, a key repository for breached data. The collection, sourced from infostealer logs, which are records created by malware that silently extracts information from infected systems, includes verified Gmail logins and millions of other major provider accounts.
Google confirmed this is not a breach of its infrastructure but a result of malware compromising users’ devices. According to HIBP, 16.4 million of the credentials were previously unseen in any breach, providing new material for cybercriminals to launch credential stuffing and account takeover attacks. The discovery highlights the growing and long-term risk posed by infostealer malware.
Why It Matters: The event reinforces how vulnerable password-only authentication remains. Stolen credentials originate from the user’s device, bypassing organisational security entirely. Once distributed, they enable large-scale automated attacks across multiple platforms.
HIBP founder Troy Hunt said the data was verified when a user confirmed the exposed password was “an accurate password on my Gmail account.” Google urged users to turn on 2-step verification and adopt passkeys as a stronger, safer alternative.
This incident is a reminder that secure personal practices such as strong authentication, regular updates, and malware protection remain the best defence against infostealer threats.
Get the stories that matter to you.
Subscribe to Cyber News Centre and update your preferences to follow our Daily 4min Cyber Update, Innovative AI Startups, The AI Diplomat series, or the main Cyber News Centre newsletter — featuring in-depth analysis on major cyber incidents, tech breakthroughs, global policy, and AI developments.
US pharmacy benefit manager MedImpact Healthcare Systems has confirmed a ransomware attack by the prolific Qilin gang. The group claims to have exfiltrated 160GB of data, including financial operation details and claims reports, raising significant concerns for the healthcare sector.
Microsoft has issued an out-of-band security update for a critical Remote Code Execution vulnerability, CVE-2025-59287, in its Windows Server Update Service. The flaw, which has a CVSS score of 9.8, is under active exploitation by threat actors, prompting a high-priority alert from CISA.
Japanese retail giant Muji has suspended all online sales after a ransomware attack crippled its logistics partner, Askul Corporation, affecting multiple major retailers and highlighting critical supply chain vulnerabilities.
Vocus Group, the parent company of Dodo and iPrimus, has confirmed a cyberattack that exposed sensitive customer data and led to unauthorised SIM-swap incidents. The breach affected 1,600 customers, underscoring rising cybersecurity threats in Australia’s telecom sector.
Where cybersecurity meets innovation, the CNC team delivers AI and tech breakthroughs for our digital future. We analyze incidents, data, and insights to keep you informed, secure, and ahead. Sign up for free!
