ATTENTION Gmail Users!!! Five million Gmail addresses and passwords Exposed ONLINE ! !

Five million Gmail addresses and passwords dumped online
Image Source: Technotification
 A user with on-line alias “tvskit ” announce associate degree archive file containing nearly five million Gmail addresses and plain text passwords on Bitcoin security forum referred to as btcsec.com and claimed that over sixty p.c of credentials found within are valid.

Although, consistent with security firm Canadian Security Intelligence Service , information|the info|the information} is recent and certain sourced from multiple data breaches

We can’t confirm that it is indeed as much as 60 p.c, but a great quantity of the leaked information is legitimate,

said Peter Kruse, the chief technology officer of Canadian Security Intelligence Service Security cluster, a Danish security company that has law-breaking intelligence to money establishments and enforcement.

CSIS researchers not solely analyzed the information however conjointly all over that it's up to three years recent supported correlations with past leaks.

We believe the information doesn’t originate from Google directly,

Kruse aforesaid via email.

Instead it’s likely it comes from various sources that have been compromised.

This means that a lot of of the leaked passwords don't correspond to Gmail or Google accounts, however to accounts on different sites wherever users have used their Gmail addresses because the user name.

CSIS has confirmation that a minimum of 5 of the leaked user name and arcanum pairs were ne'er used as log-in credentials for Gmail or Google accounts. This enforces the concept that the information comes from compromises outside Google, tho' it’s doable that they were all perpetrated by one individual or cluster, Kruse said.

“The security of our USAers is of overriding importance to us,” a Google representative aforesaid Wednesday via email. “We don't have any proof that our systems are compromised, however whenever we have a tendency to become aware that associate degree account has been compromised, we have a tendency to take steps to assist our users secure their accounts.”

Even if several of the leaked credentials end up to not be from Google, affected users would possibly still need to vary their passwords on websites wherever they used their Gmail address because the user name. an internet site referred to as isleaked.com permits users to visualize if their email address is among those leaked.