- Gmail says it has not suffered a massive data breach, despite claims
- The reported figure of 183 million passwords is primarily compiled from previously compromised credentials.
- Users may still have been breached and are at risk, so stay on your guard
Google issued a statement following multiple claims that Gmail had suffered a security breach that affected millions of users.
In a post on X (formerly Twitter), the company denied the claims and stated that Gmail’s “defenses are strong and users remain protected.”
“The inaccurate reports arise from a misunderstanding of data thieves’ databases, which routinely collect various credential theft activities that occur on the web. They do not reflect a new attack targeting any person, tool or platform.”
91% old news
The post followed multiple media outlets reporting a whopping 183 million affected by the incident after Gmail users were reported on breach reporting website HaveIBeenPwned (HIBP).
However, the breach was not verified and the information appears to be a compilation of previous breaches, likely obtained through data-stealing malware, phishing, and credential stuffing attacks.
Troy Hunt, creator of HIBP, confirmed that 91% of the 183 million credentials had been previously viewed, suggesting that this “breach” contains very little new information and is therefore unlikely to be linked to any specific incident.
That said, Hunt acknowledged that there were also 16.4 million never-before-seen credentials (those that had never been revealed in any data breach), potentially leaving a significant number of users exposed.
The advice is always the same: if you think you may have been affected (or even if you just want to be cautious), keep a close eye on your accounts for any suspicious activity, specifically your bank statements.
It may not seem like a big deal for cybercriminals to know your email address, name or date of birth, but this information can be used to apply for loans or credit cards in your name, so be sure to use identity theft protection software if you think you’ve been affected.
The best identity theft protection for every budget
