183 Million Synthient Stealer Credentials Added to Have I Been Pwned

A huge collection of stolen usernames and passwords, totalling over 183 million, has been added to a website called Have I Been Pwned (HIBP). This big pile of data, named the “Synthient Stealer Log Threat Data,” is not a regular leak from just one company but a massive collection of information stolen directly from people’s computers over time using malicious software commonly known as infostealers.

Who Found the Data?

The stolen data was gathered by a college student named Benjamin Brundage (Ben), who works with a cybersecurity company called Synthient LLC in Seattle. Ben and Synthient spent about a year building a system to monitor and collect this data from the places where cybercriminals trade it.

According to Ben’s own blog post, the team had to process massive amounts of information to create this clean, usable data set for victims. At its peak, their system recorded as many ...