Looks like PCWorld posted about an article about another data dump of user emails and passwords. Having this in hand, a nefarious actor can use this in a credential stuffing attack, just randomly using the combination of an email and using the password associated with it.

This is why it is best practice to have AT LEAST different passwords for every account you create online. Usually stored in a password manager like 1Password, Apple’s iCloud Keychain, or even Chrome or Firefox. Keep in mind your “eggs in one basket” is just as protected as the main password on the basket.

If an online account offers 2FA (or multi-factor authentication), use it. There is a huge push for passkeys, which use biometrics to confirm your identity. Most Android and Apple devices will allow you to sign up for them using the sensors built into the device.

More information about this latest data dump can be found here:

https://cybernews.com/security/hacker-on-hacker-crime-personal-information-of-24000-illegal-data-buyers-put-for-sale-online/

https://cybernews.com/news/leaker-says-they-are-offering-private-details-of-500-million-facebook-users/

https://cybernews.com/news/stolen-data-of-500-million-linkedin-users-being-sold-online-2-million-leaked-as-proof-2/

In addition to using haveibeenpwnd? website to identify if you have leaked PI (personal information) on the Internet, you can also use this search from CyberNews: https://cybernews.com/personal-data-leak-check/