Latest Breach Information

Below is a list of the last 25 known data breaches and any information we may have about them.


Facebook Marketplace

Added Date: 2/21/2024
Breach Date: 10/1/2023
Updated Date: 2/21/2024
Breach Count: 77,267
Content: Email addresses, Geographic locations, Names, Passwords, Phone numbers, Social media profiles
Domain: facebook.com

Description:

In February 2024, 200k Facebook Marketplace records allegedly obtained from a Meta contractor in October 2023 were posted to a popular hacking forum. The data contained 77k unique email addresses alongside names, phone numbers, Facebook profile IDs and geographic locations. The data also contained bcrypt password hashes, although there is no indication these belong to the corresponding Facebook accounts.

Verified: , Fabricated: , Sensitive: , Active: , Retired: , Is Spam List:

Spoutible

Added Date: 2/5/2024
Breach Date: 1/31/2024
Updated Date: 2/5/2024
Breach Count: 207,114
Content: Email addresses, Genders, IP addresses, Names, Passwords, Phone numbers, Usernames
Domain: spoutible.com

Description:

In January 2024, Spoutible had 207k records scraped from a misconfigured API that inadvertently returned excessive personal information. The data included names, usernames, email and IP addresses, phone numbers (where provided to the platform), genders and bcrypt password hashes. The incident also exposed 2FA secrets and backup codes along with password reset tokens.

Verified: , Fabricated: , Sensitive: , Active: , Retired: , Is Spam List:

MyPertamina

Added Date: 1/26/2024
Breach Date: 11/1/2022
Updated Date: 1/26/2024
Breach Count: 5,970,416
Content: Dates of birth, Email addresses, Genders, Names, Phone numbers, Physical addresses, Purchases
Domain: mypertamina.id

Description:

In November 2022, the Indonesian oil and gas company Pertamina suffered a data breach of their MyPertamina service. The incident exposed 44M records with 6M unique email addresses along with names, dates of birth, genders, physical addresses and purchases.

Verified: , Fabricated: , Sensitive: , Active: , Retired: , Is Spam List:

Trello

Added Date: 1/22/2024
Breach Date: 1/16/2024
Updated Date: 1/22/2024
Breach Count: 15,111,945
Content: Email addresses, Names, Usernames
Domain: trello.com

Description:

In January 2024, data was scraped from Trello and posted for sale on a popular hacking forum. Containing over 15M email addresses, names and usernames, the data was obtained by enumerating a publicly accessible resource using email addresses from previous breach corpuses. Trello advised that no unauthorised access had occurred.

Verified: , Fabricated: , Sensitive: , Active: , Retired: , Is Spam List:

Naz.API

Added Date: 1/17/2024
Breach Date: 9/20/2023
Updated Date: 1/17/2024
Breach Count: 70,840,771
Content: Email addresses, Passwords
Domain: n/a

Description:

In September 2023, over 100GB of stealer logs and credential stuffing lists titled "Naz.API" was posted to a popular hacking forum. The incident contained a combination of email address and plain text password pairs alongside the service they were entered into, and standalone credential pairs obtained from unnamed sources. In total, the corpus of data included 71M unique email addresses and 100M unique passwords.

Verified: , Fabricated: , Sensitive: , Active: , Retired: , Is Spam List:

Hathway

Added Date: 1/12/2024
Breach Date: 12/17/2023
Updated Date: 1/12/2024
Breach Count: 4,670,080
Content: Device information, Email addresses, IP addresses, Names, Passwords, Phone numbers, Physical addresses, Salutations, Support tickets
Domain: hathway.com

Description:

In December 2023, hundreds of gigabytes of data allegedly taken from Indian ISP and digital TV provider Hathway appeared on a popular hacking website. The incident exposed extensive personal information including 4.7M unique email addresses along with names, physical and IP addresses, phone numbers, password hashes and support ticket logs.

Verified: , Fabricated: , Sensitive: , Active: , Retired: , Is Spam List:

Legendas.TV

Added Date: 1/4/2024
Breach Date: 10/1/2017
Updated Date: 1/4/2024
Breach Count: 3,869,181
Content: Email addresses, IP addresses, Names, Passwords, Usernames
Domain: legendas.tv

Description:

In October 2017, the now defunct Brazilian service for retrieving subtitles in Portuguese Legendas.TV suffered a data breach that exposed nearly 4M customer records. The impacted data included names, usernames, email and IP addresses and unsalted SHA-1 hashes.

Verified: , Fabricated: , Sensitive: , Active: , Retired: , Is Spam List:

DC Health Link

Added Date: 12/14/2023
Breach Date: 3/6/2023
Updated Date: 12/14/2023
Breach Count: 48,145
Content: Citizenship statuses, Dates of birth, Email addresses, Employers, Ethnicities, Genders, Names, Phone numbers, Physical addresses, Purchases, Social security numbers
Domain: dchealthlink.com

Description:

In March 2023, DC Health Link discovered a data breach that was later publicly posted to a popular data breach forum. The impacted data included 48k unique email addresses alongside names, genders, dates of birth, home addresses, phone numbers and social security numbers. The data was provided to HIBP by a source who requested it be attributed to "Aegis" and "IntelBroker".

Verified: , Fabricated: , Sensitive: , Active: , Retired: , Is Spam List:

InflateVids

Added Date: 12/11/2023
Breach Date: 12/12/2023
Updated Date: 12/11/2023
Breach Count: 13,405
Content: Email addresses, Genders, IP addresses, Passwords, Usernames
Domain: tube.inflatevids.xyz

Description:

In December 2023, the inflatable and balloon fetish videos website InflateVids suffered a data breach. The incident exposed over 13k unique email addresses alongside usernames, IP addresses, genders and SHA-1 password hashes.

Verified: , Fabricated: , Sensitive: , Active: , Retired: , Is Spam List:

Kaneva

Added Date: 12/9/2023
Breach Date: 7/1/2016
Updated Date: 12/9/2023
Breach Count: 3,901,179
Content: Dates of birth, Email addresses, Passwords, Usernames
Domain: kaneva.com

Description:

In July 2016, now defunct website Kaneva, the service to "build and explore virtual worlds", suffered a data breach that exposed 3.9M user records. The data included email addresses, usernames, dates of birth and salted MD5 password hashes.

Verified: , Fabricated: , Sensitive: , Active: , Retired: , Is Spam List:

Gemplex

Added Date: 12/8/2023
Breach Date: 2/18/2021
Updated Date: 12/8/2023
Breach Count: 4,563,166
Content: Device information, Email addresses, Names, Passwords, Phone numbers
Domain: gemplex.tv

Description:

In February 2021, the Indian streaming platform Gemplex suffered a data breach that exposed 4.6M user accounts. The impacted data included device information, names, phone numbers, email addresses and bcrypt password hashes.

Verified: , Fabricated: , Sensitive: , Active: , Retired: , Is Spam List:

Movie Forums

Added Date: 12/7/2023
Breach Date: 11/24/2022
Updated Date: 12/7/2023
Breach Count: 39,914
Content: Dates of birth, Email addresses, IP addresses, Passwords, Usernames
Domain: movieforums.com

Description:

In December 2022, the Movie Forums website suffered a data breach that affected 40k users. The breach exposed email and IP addresses, usernames, dates of birth and passwords stored as easily crackable salted MD5 hashes. The data was subsequently posted a popular clear web hacking forum.

Verified: , Fabricated: , Sensitive: , Active: , Retired: , Is Spam List:

JoyGames

Added Date: 12/6/2023
Breach Date: 12/14/2019
Updated Date: 12/6/2023
Breach Count: 4,461,787
Content: Email addresses, IP addresses, Passwords, Usernames
Domain: joygames.me

Description:

In December 2019, the forum for the JoyGames website suffered a data breach that exposed 4.5M unique email addresses. The impacted data also included usernames, IP addresses and salted MD5 password hashes.

Verified: , Fabricated: , Sensitive: , Active: , Retired: , Is Spam List:

RailYatri

Added Date: 12/5/2023
Breach Date: 12/26/2022
Updated Date: 12/5/2023
Breach Count: 23,209,732
Content: Email addresses, Genders, Names, Phone numbers, Purchases
Domain: railyatri.in

Description:

In December 2022, India’s government-approved online travel agency RailYatri suffered a data breach. The incident impacted over 31M customers and exposed 23M unique email addresses. Also impacted were names, genders, phone numbers and tickets purchased, including travel information and fares.

Verified: , Fabricated: , Sensitive: , Active: , Retired: , Is Spam List:

SoarGames

Added Date: 12/3/2023
Breach Date: 12/16/2019
Updated Date: 12/3/2023
Breach Count: 4,774,445
Content: Email addresses, IP addresses, Passwords, Usernames
Domain: soargames.com

Description:

In December 2019, the now defunct gaming website SoarGames suffered a data breach that exposed 4.8M unique email addresses. The impacted data included usernames, email and IP addresses and salted MD5 password hashes. A significant number of the email addresses appeared to have been generated as opposed to organically provided by the user.

Verified: , Fabricated: , Sensitive: , Active: , Retired: , Is Spam List:

Go Ninja

Added Date: 11/30/2023
Breach Date: 12/17/2019
Updated Date: 11/30/2023
Breach Count: 4,999,001
Content: Email addresses, IP addresses, Passwords, Usernames
Domain: goninja.de

Description:

In December 2019, the now defunct German gaming website Go Ninja suffered a data breach that exposed 5M unique email addresses. The impacted data included usernames, email and IP addresses and salted MD5 password hashes. More than 4M of the email addresses appeared to have been generated as opposed to organically provided by the user.

Verified: , Fabricated: , Sensitive: , Active: , Retired: , Is Spam List:

Estante Virtual

Added Date: 11/29/2023
Breach Date: 2/28/2019
Updated Date: 11/29/2023
Breach Count: 5,412,603
Content: Dates of birth, Email addresses, Names, Passwords, Phone numbers, Physical addresses, Usernames
Domain: estantevirtual.com.br

Description:

In February 2019, the Brazilian book store Estante Virtual suffered a data breach that impacted 5.4M customers. The exposed data included names, usernames, email and physical addresses, phone numbers, dates of birth and unsalted SHA-1 password hashes.

Verified: , Fabricated: , Sensitive: , Active: , Retired: , Is Spam List:

Bleach Anime Forum

Added Date: 11/29/2023
Breach Date: 1/1/2015
Updated Date: 11/29/2023
Breach Count: 143,711
Content: Email addresses, Passwords, Usernames
Domain: bleachanime.org

Description:

In 2015, the now defunct independent forum for the Bleach Anime series suffered a data breach that exposed 144k user records. The impacted data included usernames, email addresses and salted MD5 password hashes.

Verified: , Fabricated: , Sensitive: , Active: , Retired: , Is Spam List:

IndiHome

Added Date: 11/27/2023
Breach Date: 11/1/2019
Updated Date: 11/27/2023
Breach Count: 12,629,245
Content: Device information, Email addresses, Genders, Geographic locations, IP addresses, Names
Domain: indihome.co.id

Description:

In mid-2021, reports emerged of a data breach of Indonesia's telecommunications company, IndiHome. Over 26M rows of data alleged to have been sourced from the company was posted to a popular hacking forum and contained 12.6M unique email addresses alongside names, IP addresses, genders and geographic locations. The most recent data was stamped as being recorded in November 2019.

Verified: , Fabricated: , Sensitive: , Active: , Retired: , Is Spam List:

Jam Tangan

Added Date: 11/26/2023
Breach Date: 7/6/2021
Updated Date: 11/26/2023
Breach Count: 434,784
Content: Email addresses, IP addresses, Names, Passwords, Phone numbers, Physical addresses
Domain: jamtangan.com

Description:

In July 2021, the online Indonesian watch store, Jam Tangan (AKA Machtwatch), suffered a data breach that exposed over 400k customer records which were subsequently posted to a popular hacking forum. The data included email and IP addresses, names, phone numbers, physical addresses and passwords stored as either unsalted MD5 or bcrypt hashes.

Verified: , Fabricated: , Sensitive: , Active: , Retired: , Is Spam List:

























Account Search

This site simply searches online databases of compromised account information in an attempt to help you keep your accounts safe and secure. We do not actually have or store any information -- including the usernames and email addresses you enter above.

Share This!


Make a Donation To Keep Us Running