Cybersecurity: Massive blacknet leaks reveal 1.7 billion passwords; that’s why your login may have been compromised without knowing it

With advances in technology, new innovations and software tools have made our daily tasks easier, and unfortunately, they also benefit cybercriminals.We often share passwords and personal information online when prompted, but should we still do this? A new report shows that massive dark web leaks have exposed 1.7 billion passwords, and InfoStealer activity soared 500% in one year.
Fortinet’s cybersecurity researchers observed in 2024 that the surge in stolen login certificates is actively selling on the dark web. More than 1.7 billion usernames and passwords were stolen, not from old data leaks, but through hackers who actively monitor people’s computers or mobile phones when used.
It’s all broken down into clear, simple pointers covering what inheritors are, how they work, and five detailed steps to protect themselves.

How is the spread of Infostealer spread?

Phishing emails are very common, they are fake messages trying to trick you into clicking bad links or files. Then there is a fake browser extension that seems useful, but is actually stealing your data secretly. Another big thing is fake software or “crack” apps, you think you’ll get free content or cheat, but end up installing malware.

What did they steal, why is this dangerous?

The InfoStealer malware steals content from your browser to save passwords, auto-filled information, cookies, and session tokens. The scary part is that using session tokens and cookies, hackers can log in to your account without a password or even a 2FA code. They can also grab other things like FTP login, cloud account and digital wallet keys, basically, all the important things you don’t want anyone else to have. Once InfoStealers collect your data, they upload it to a command and control server controlled by cybercriminals. This stolen data, also known as “logs”, is then traded with other criminals by initial access brokers, middlemen. Data is often used in larger attacks, such as ransomware. According to Fortinet’s 2025 report, the issue is huge, with stolen credential logs increasing by 500% in just one year. Some of the most common and dangerous vulnerable groups include Redline, Vidar, and raccoons. Today, stolen data is sold like a regular product where buyers can buy a VPN or administrator login with specific area pricing.

Now, how to avoid starting one of the goals, here are 5 simple tips:

1) Do not save credentials in your browser. Password Manager places all your logins in a secure library. Many include violation tools to tell you if any passwords are exposed.

2) Add the second step (code from the application, text message, or biometric scan). Even if someone steals your password, they can’t log in without the extra code. Open 2FA for email, banking, social media and work accounts.

3) Download apps and files only from the official website or app store. Do not click on the link in the unexpected email, hover over the link to check the real address.

4) Turn on automatic updates for your operating system and critical programs.

5) Consider a personal data deletion service as they can help you scrub your name, email, phone number and address from your data brokerage website.

FAQ

What is a dark web password leakage?
This is the time to share stolen passwords or secretly sold on hidden sites.

How can I protect my account?
Use a strong password and do not save the password in your browser.