verified2025-04-11

Synthient Credential Stuffing Threat DataSynthient Credential Stuffing Threat Data breach

1,957,476,021 records compromised

Records
1.96B
Breach date
2025-04-11
Data classes
2

Description

During 2025, the threat-intelligence firm Synthient aggregated 2 billion unique email addresses disclosed in credential-stuffing lists found across multiple malicious internet sources . Comprised of email addresses and passwords from previous data breaches, these lists are used by attackers to compromise other, unrelated accounts of victims who have reused their passwords. The data also included 1.3 billion unique passwords, which are now searchable in Pwned Passwords. Working to turn breached data into awareness, Synthient partnered with HIBP to help victims of cybercrime understand their exposure.

Compromised data classes· 2

Email addressesPasswords

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Breach
Synthient Stealer Log Threat Data
Breach
Stealer Logs, Jan 2025
Breach
Combolists Posted to Telegram
Breach
Exploit.In
Breach
Collection #1
Breach
Polish Credentials
Sourced from Have I Been Pwned. Aggregate metadata only — no PII. Curated by Adam Lundqvist, Founder at SQUR.