An urgent warning has been issued to UK residents following a significant data breach that has compromised millions of passwords. The breach, which affected 183 million Gmail users, has been described by cybersecurity experts as extensive, with data reportedly coming from various sources.

The breach involved the exposure of approximately 3.5 terabytes of data, including email addresses, passwords, and the websites where these credentials were used. Cybersecurity expert Troy Hunt stated that the breach was a result of "infostealer activity" and was initially confirmed in April this year. He noted that the stolen data primarily consisted of "stealer logs and credential stuffing lists".

Hunt explained that while the breach impacted all major email providers, Gmail was particularly affected. He remarked, "All the major providers have email addresses in there. They’re from everywhere you could imagine, but Gmail always features heavily."

In response to the breach, a spokesperson for Google advised users on how to mitigate the risks associated with the stolen data. They suggested that users could enhance their security by enabling two-step verification and adopting passkeys, which serve as a simpler and more secure alternative to traditional passwords.

The details of the breach have been documented in the Have I Been Pwned database, which serves as a resource for individuals to check if their data has been compromised. Google emphasised the importance of taking proactive measures to protect personal information, stating, "This report covers broad infostealer activity that targets many types of web activities."

As the situation develops, users are urged to review their security settings and take necessary precautions to safeguard their online accounts.