Brinztech Alert: 81 Million MyHeritage Accounts with Plaintext Passwords on Sale

Dark Web News Analysis: 81 Million MyHeritage Accounts with Plaintext Passwords on Sale

A massive database containing the account details of 81,620,128 users, allegedly from the genealogy and DNA testing service MyHeritage, is being offered for sale on a hacker forum. The breach is catastrophic due to the seller’s claim that the database includes user passwords stored in plaintext. This incident represents a critical failure of basic data security principles and puts a huge global user base at immediate risk. The compromised 2.4 GB dataset reportedly includes:

• Account Credentials: Email addresses and passwords in plaintext (unencrypted).
• Record Count: 81,620,128 unique user accounts.
• Total Size: 2.4 GB.

Key Cybersecurity Insights

The storage and subsequent leak of plaintext passwords on this scale is a cybersecurity disaster with guaranteed, widespread consequences.

• A Catastrophic Security Failure: Passwords Stored in Plaintext: Storing user passwords in an unencrypted, plaintext format is a grossly negligent security practice that has been universally condemned for decades. It means that once the database was breached, zero effort was required for the attackers to obtain the cleartext passwords for every user. This is a complete and fundamental failure to protect user data.
• Guaranteed Mass-Scale Credential Stuffing Attacks: With a list of 81.6 million active email addresses and their corresponding plaintext passwords, criminals will launch one of the largest and most successful “credential stuffing” campaigns in recent memory. Every single user in this breach who has ever reused their MyHeritage password on any other platform is at immediate and high risk of having those accounts—including banking, email, and social media—compromised.
• A Deep Violation of Personal and Family Privacy: MyHeritage is a platform where users build and store deeply personal information about their family history, lineage, and potentially their DNA results. While this leak is primarily credentials, it provides the master keys for attackers to log in and access these intimate family trees and other sensitive data, enabling highly targeted social engineering, fraud, or extortion against entire families.

Critical Mitigation Strategies

This is a cybersecurity emergency for all MyHeritage users, who must act immediately to protect their entire digital life.

• For MyHeritage: Assume Total Credential Compromise and Force Reset: The company must immediately force a password reset for all 81 million+ affected users to invalidate the leaked credentials. They must also urgently re-engineer their platform to store passwords using a modern, strong, salted hashing algorithm (e.g., Argon2 or bcrypt) and mandate Multi-Factor Authentication (MFA).
• For All MyHeritage Users: Change Every Reused Password Immediately: This is the most critical advice for the millions of victims. This is a security emergency. Users must immediately change the password they used on MyHeritage on every single other online service without exception. Prioritize changing passwords on email, financial, and other sensitive accounts first.
• For All Online Service Providers: Prepare for a Massive Influx of Attacks: All companies that provide online services, especially in finance, e-commerce, and social media, should be on high alert for a massive increase in credential stuffing attacks originating from this breach. Enhancing brute-force detection and blocking capabilities is crucial in the coming days and weeks.

Secure Your Organization with Brinztech As a cybersecurity provider, we can protect your business from the threats discussed here. Contact us to learn more about our services.

Questions or Feedback? For expert advice, use our ‘Ask an Analyst’ feature. For general inquiries or to report this post, please email us: contact@brinztech.com