A malware researcher has discovered a spamming operation that has been drawing on a list of 711.5 million email addresses.
The scale of the scheme appears to make it the biggest find of its kind.
The addresses - and in some cases associated passwords - have apparently been gathered to help spread banking malware.
Members of the public can check if their accounts have been affected via the Have I Been Pwned service.