Over the past few weeks, more than 130 million user records, allegedly collected from 14 company data breaches, have been put up for sale on numerous hacking forums. Bleeping Computer reported that the seller, a known data breach broker, claims all the stolen information comes from breaches that occurred in 2020. While the type of sensitive data varies within the records, all contain user names and hashed passwords. The seller informed Bleeping Computer that the databases range in costs from $100 to $1,100 each. Avast Security Evangelist Luis Corrons remarked, “Companies have to be especially cautious when managing users’ data, as regulations such as the GDPR can cost them millions if there is proof they did not take the necessary security measures to protect the information.”