In June, researchers uncovered a staggering dataset of over 16 billion login credentials hosted openly online. While not a single breach of one company, it was an aggregation of data stolen from Google, Apple, and Facebook users via infostealer malware. This “credential buffet” fueled a massive wave of account takeover attacks across the globe. Additionally, Qantas and WestJet reported breaches through a shared customer-service platform, further proving that the airline industry remains one of the most targeted sectors in 2025.