94 Billion Stolen Browser Cookies Found Online

A trove of nearly 94 billion stolen browser cookies has surfaced on the dark web, exposing a significant cybersecurity threat to users worldwide. These cookies, which store session data and authentication information, can grant attackers unauthorized access to online accounts without needing passwords. The massive cache was discovered circulating across underground forums and marketplaces, suggesting a surge in cybercriminal interest in cookie-based attacks.

The data likely stems from widespread malware infections and phishing campaigns that quietly harvest browser data from compromised devices. Once obtained, these cookies can be exploited to hijack user sessions, impersonate victims, and bypass security controls such as multi-factor authentication.

The discovery highlights a growing trend in cybercrime where stolen digital credentials—including cookies—are monetized at scale. Security experts recommend regularly clearing browser cookies, using antivirus software, and enabling device-level protections. With billions of records compromised, the exposure underscores the urgency for more robust cybersecurity hygiene among users and organizations alike.