Your iCloud password could be newly exposed from a giant password leak

A breach exposing 184 million passwords includes Apple login credentials used across iPhone and Mac computers.

Blue background with white computer code forming the shape of a human skull in the center, symbolizing cybersecurity threats.

Suspected infostealer malware

On May 22, 2025, cybersecurity researcher Jeremiah Fowler reported the discovery of a massive unprotected database containing more than 184 million usernames and passwords. The 47-gigabyte Elasticsearch server was publicly accessible and not secured by a password or encryption.

The exposed credentials covered accounts from at least 29 countries and included login details for widely used platforms such as Facebook, Google, Microsoft, and Apple. Fowler’s original disclosure on Website Planet didn’t list Apple services by name — but iCloud logins are present, following inspection.

Continue Reading on AppleInsider | Discuss on our Forums