A global cybersecurity breach has exposed millions of user credentials, with Gmail accounts forming a major part of the 183 million compromised in data breach. The leak, discovered in April 2025 through the release of the Synthient Stealer Log Threat Data, is being described by experts as one of the largest credential exposures ever recorded.
Cybersecurity firm Synthient LLC said the stolen data came from infostealer malware that infected personal computers worldwide. Investigators confirmed that Google’s systems were not breached, but that hackers intercepted user passwords from infected devices.
Troy Hunt, founder of the breach-tracking platform Have I Been Pwned, confirmed that the leaked dataset includes Gmail login details. “The newly disclosed data includes website URLs, email addresses, and passwords, some linked to confirmed Gmail accounts,” Hunt said. The dataset was added to Have I Been Pwned on October 21, 2025, allowing users to check if their credentials were exposed.
ALSO READ: Ailing 92-year-old perennial Cameroonian President Paul Biya wins eighth term
Security experts have warned that many of the passwords were stored in plain text and are already circulating on dark web forums. They advise users to change passwords immediately and enable multi-factor authentication. Hunt also recommended using stronger authentication methods such as hardware keys or passkeys and running Google’s Security Check-up to remove unfamiliar devices.
Authorities continue to investigate the origins of the Synthient dataset. Analysts say the incident highlights a growing shift in cyberattacks toward malware that targets individuals rather than corporate networks.
The exposure of Gmail credentials in the 183 million compromised accounts underscores the need for stronger personal device security and rapid user action to prevent further misuse.