😈
MagicDuel RPG Database
In Auguest 2023, MagicDuel RPG (magicduel.com) was dumped through a simple SQLi vulnerability. More than 138k people were compromised. This breach includes Usernames, Emails, Hashed Passwords, and IPs.
Compromised data: Username, Emails, Hashed Passwords, IPs
😈
MagicDuel RPG Database
In Auguest 2023, MagicDuel RPG (magicduel.com) was dumped through a simple SQLi vulnerability. More than 138k people were compromised. This breach includes Usernames, Emails, Hashed Passwords, and IPs.
Compromised data: Username, Emails, Hashed Passwords, IPs
😈
😈
G.Skill
In January of 2023, G.Skill was compromised through a vulnerable database service. In April of the same year, their database was deleted and they were served with an extortion note that they failed to negotiate for. The data contains RMA information, User information including email addresses, full addresses, and hashed passwords. Over 50,000 user entries exist.
Compromised data: Full Names, Emails, Passwords, IP addresses
😈
G.Skill
In January of 2023, G.Skill was compromised through a vulnerable database service. In April of the same year, their database was deleted and they were served with an extortion note that they failed to negotiate for. The data contains RMA information, User information including email addresses, full addresses, and hashed passwords. Over 50,000 user entries exist.
Compromised data: Full Names, Emails, Passwords, IP addresses
😈
😈
iD Tech Database
In February 2023, the tech camps for kids service iD Tech had almost 1M records posted to a popular hacking forum. The data included 415k unique email addresses, names, dates of birth and plain text passwords which appear to have been breached in the previous month. iD Tech did not respond to multiple attempts to report the incident.
Compromised data: Dates of birth, Email addresses, Names, Passwords
😈
iD Tech Database
In February 2023, the tech camps for kids service iD Tech had almost 1M records posted to a popular hacking forum. The data included 415k unique email addresses, names, dates of birth and plain text passwords which appear to have been breached in the previous month. iD Tech did not respond to multiple attempts to report the incident.
Compromised data: Dates of birth, Email addresses, Names, Passwords
😈
😈
JD Group Database
In May 2023, the South African retailer JD Group announced a data breach affecting a number of their online assets including Bradlows, Everyshop, HiFi Corp, Incredible (Connection), Rochester, Russells, and Sleepmasters. The breach exposed over 520k unique customer records including names, email and physical addresses, phone numbers and South African ID numbers.
Compromised data: Email addresses, Government issued IDs, Names, Phone numbers, Physical addresses
😈
JD Group Database
In May 2023, the South African retailer JD Group announced a data breach affecting a number of their online assets including Bradlows, Everyshop, HiFi Corp, Incredible (Connection), Rochester, Russells, and Sleepmasters. The breach exposed over 520k unique customer records including names, email and physical addresses, phone numbers and South African ID numbers.
Compromised data: Email addresses, Government issued IDs, Names, Phone numbers, Physical addresses
😈
😈
Grapevine/grpvyn Database
Around June 2023, the food delivery aggregation app suffered a data breach that impacted 395k users. The breach included Email addresses, Phone numbers, passwords
Compromised data: Email addresses, Phone numbers, Full names, Password hashes, physical addresses
😈
Grapevine/grpvyn Database
Around June 2023, the food delivery aggregation app suffered a data breach that impacted 395k users. The breach included Email addresses, Phone numbers, passwords
Compromised data: Email addresses, Phone numbers, Full names, Password hashes, physical addresses
😈
😈
flipd.gg/ogusers.com Database
In July 2022, the account hijacking and SIM swapping forum OGusers suffered a data breach, the fifth since December 2018. The breach contained usernames, email and IP addresses and passwords stored as argon2 hashes. A total of 529k unique email addresses appeared in the breach.
Also Known As ogu.gg/ogusers.com
Compromised data: Email addresses, IP addresses, Passwords, Usernames
😈
flipd.gg/ogusers.com Database
In July 2022, the account hijacking and SIM swapping forum OGusers suffered a data breach, the fifth since December 2018. The breach contained usernames, email and IP addresses and passwords stored as argon2 hashes. A total of 529k unique email addresses appeared in the breach.
Also Known As ogu.gg/ogusers.com
Compromised data: Email addresses, IP addresses, Passwords, Usernames
😈
😈
Zacks Database
In December 2022, the investment research company Zacks announced a data breach. The following month, reports emerged of the incident impacting 820k customers. However, in June 2023, a corpus of data with almost 9M Zacks customers appeared before being broadly circulated on a popular hacking forum. The most recent data was dated May 2020 and included names, usernames, email and physical addresses, phone numbers and passwords stored as unsalted SHA-256 hashes. On disclosure of the larger breach, Zacks advised that in addition to their original report "the unauthorised third parties also gained access to encrypted [sic] passwords of zacks.com customers, but only in the encrypted [sic] format".
Compromised data: Email addresses, Names, Passwords, Phone numbers, Physical addresses, Usernames
👿
Zacks Database
In December 2022, the investment research company Zacks announced a data breach. The following month, reports emerged of the incident impacting 820k customers. However, in June 2023, a corpus of data with almost 9M Zacks customers appeared before being broadly circulated on a popular hacking forum. The most recent data was dated May 2020 and included names, usernames, email and physical addresses, phone numbers and passwords stored as unsalted SHA-256 hashes. On disclosure of the larger breach, Zacks advised that in addition to their original report "the unauthorised third parties also gained access to encrypted [sic] passwords of zacks.com customers, but only in the encrypted [sic] format".
Compromised data: Email addresses, Names, Passwords, Phone numbers, Physical addresses, Usernames
👿
😈
Luxottica
In March 2021, the world's largest eyewear company Luxoticca suffered a data breach via one of their partners that exposed the personal information of more than 70M people. The data was subsequently sold via a popular hacking forum in late 2022 and included email and physical addresses, names, genders, dates of birth and phone numbers. In a statement from Luxottica, they advised they were aware of the incident and are currently "considering other notification obligations".
Compromised data: Dates of birth, Email addresses, Genders, Names, Phone numbers, Physical addresses
😈
Luxottica
In March 2021, the world's largest eyewear company Luxoticca suffered a data breach via one of their partners that exposed the personal information of more than 70M people. The data was subsequently sold via a popular hacking forum in late 2022 and included email and physical addresses, names, genders, dates of birth and phone numbers. In a statement from Luxottica, they advised they were aware of the incident and are currently "considering other notification obligations".
Compromised data: Dates of birth, Email addresses, Genders, Names, Phone numbers, Physical addresses
😈
😈
RaidForums Database
In May 2023, 478k user records from the now defunct hacking forum known as "RaidForums" was posted to another hacking forum. The data dated back to September 2020 and included email addresses, usernames, dates of birth, IP addresses and passwords stored as Argon2 hashes.
Compromised data: Dates of birth, Email addresses, IP addresses, Passwords, Usernames
😈
RaidForums Database
In May 2023, 478k user records from the now defunct hacking forum known as "RaidForums" was posted to another hacking forum. The data dated back to September 2020 and included email addresses, usernames, dates of birth, IP addresses and passwords stored as Argon2 hashes.
Compromised data: Dates of birth, Email addresses, IP addresses, Passwords, Usernames
😈
👺
RailYatri Database
In approximately December 2022, the Indian train ticket platform RailYatri suffered a data breach that included 31 million entries. The attack led to the exposure of data including Email addresses, Full names, Genders, Phone numbers and Locations.
Compromised data: Email addresses, Full names, Genders, Phone numbers, Locations
👺
RailYatri Database
In approximately December 2022, the Indian train ticket platform RailYatri suffered a data breach that included 31 million entries. The attack led to the exposure of data including Email addresses, Full names, Genders, Phone numbers and Locations.
Compromised data: Email addresses, Full names, Genders, Phone numbers, Locations
👺
😈
Weee! Database
n approximately February 2023, the Asian and Hispanic food delivery service Weee! suffered a data breach. The attack led to the exposure of data including Full names, Email addresses, Phone numbers, Device types and Order notes (Where to leave the Order, Apartment codes etc). In total, 11.3 million orders were affected and 1,117,405 unique Email addresses were present in the data.
Compromised data: Full names, Email addresses, Phone numbers, Device types, Order Notes
😈
Weee! Database
n approximately February 2023, the Asian and Hispanic food delivery service Weee! suffered a data breach. The attack led to the exposure of data including Full names, Email addresses, Phone numbers, Device types and Order notes (Where to leave the Order, Apartment codes etc). In total, 11.3 million orders were affected and 1,117,405 unique Email addresses were present in the data.
Compromised data: Full names, Email addresses, Phone numbers, Device types, Order Notes
😈
😈
Instant Checkmate & TruthFinder Database
In April 2019, the the public record search services Instant Checkmate & TruthFinder (Owned by PeopleConnect) suffered a data breach that impacted 20.2 million users. The attack led to the exposure of data including Email addresses, Full names, Phone numbers and Passwords stored as scrypt hashes (possibly).
Compromised data: Email addresses, Full names, Phone numbers, Passwords
😈
Instant Checkmate & TruthFinder Database
In April 2019, the the public record search services Instant Checkmate & TruthFinder (Owned by PeopleConnect) suffered a data breach that impacted 20.2 million users. The attack led to the exposure of data including Email addresses, Full names, Phone numbers and Passwords stored as scrypt hashes (possibly).
Compromised data: Email addresses, Full names, Phone numbers, Passwords
😈
👽
Latest Pilot Jobs Database
In approximately September 2022, the Service for pilots to find jobs known as "Latest Pilot Jobs" suffered a data breach. The leak led to the exposure of data including Usernames, Email addresses, Full names and Passwords stored as MD5 hashes. In total, 127k users were affected.
Compromised data: Usernames, Email addresses, Full names, Passwords
❄️
Latest Pilot Jobs Database
In approximately September 2022, the Service for pilots to find jobs known as "Latest Pilot Jobs" suffered a data breach. The leak led to the exposure of data including Usernames, Email addresses, Full names and Passwords stored as MD5 hashes. In total, 127k users were affected.
Compromised data: Usernames, Email addresses, Full names, Passwords
❄️
👽
Stayful Database
In approximately January 2016, the Hotel booking website known as Stayful suffered a data breach that impacted 183k users. The leak led to the exposure of data including Usernames, Full names, Phone numbers, Email addresses, Locations and Passwords stored as SHA-256 hashes.
Compromised data: Usernames, Full names, Phone numbers, Email addresses, Locations, Passwords
❄️
Stayful Database
In approximately January 2016, the Hotel booking website known as Stayful suffered a data breach that impacted 183k users. The leak led to the exposure of data including Usernames, Full names, Phone numbers, Email addresses, Locations and Passwords stored as SHA-256 hashes.
Compromised data: Usernames, Full names, Phone numbers, Email addresses, Locations, Passwords
❄️
👽
Whitepages Database
In mid-2016, the telephone and address directory service Whitepages was among a raft of sites that were breached and their data then sold in early-2019. The data included over 11 million unique email addresses alongside names and passwords stored as either a SHA-1 or bcrypt hash.
Compromised data: Email addresses, Names, Passwords
❄️
Whitepages Database
In mid-2016, the telephone and address directory service Whitepages was among a raft of sites that were breached and their data then sold in early-2019. The data included over 11 million unique email addresses alongside names and passwords stored as either a SHA-1 or bcrypt hash.
Compromised data: Email addresses, Names, Passwords
❄️
OMGPop Database
Sometime around 2019, The multiplayer gaming website OMGPop (formerly known as "iminlikewithyou") suffered a data leak affecting around 7 Million users. The data in this breach is from 2013 but was leaked in 2019. The attack led to the exposure of data including Email addresses and Passwords stored in Plaintext.
Compromised data: Email addresses, Passwords
😈
Sometime around 2019, The multiplayer gaming website OMGPop (formerly known as "iminlikewithyou") suffered a data leak affecting around 7 Million users. The data in this breach is from 2013 but was leaked in 2019. The attack led to the exposure of data including Email addresses and Passwords stored in Plaintext.
Compromised data: Email addresses, Passwords
😈
👺
Twitter Database
In early 2023, over 200M records scraped from Twitter appeared on a popular hacking forum (BreachForums). The data was obtained sometime in 2021 by abusing an API that enabled email addresses to be resolved to Twitter profiles. The subsequent results were then composed into a corpus of data containing email addresses alongside public Twitter profile information including names, usernames and follower counts.
If you want a "Cleaner" version of this in CSV Format, we suggest unlocking This Thread instead.
I would like to warn users this leak is over 59.17GB uncompressed and 12.27GB compressed.
Compromised data: Names, Email addrresses, Social media profiles, Usernames
👺
Twitter Database
In early 2023, over 200M records scraped from Twitter appeared on a popular hacking forum (BreachForums). The data was obtained sometime in 2021 by abusing an API that enabled email addresses to be resolved to Twitter profiles. The subsequent results were then composed into a corpus of data containing email addresses alongside public Twitter profile information including names, usernames and follower counts.
If you want a "Cleaner" version of this in CSV Format, we suggest unlocking This Thread instead.
I would like to warn users this leak is over 59.17GB uncompressed and 12.27GB compressed.
Compromised data: Names, Email addrresses, Social media profiles, Usernames
👺
demo.zeeroq.com Combolist
Sometime in 2019, a large amount of combolists became exposed in an open directory on the domain "demo.zeeroq.com". The amount of records totaled over 200 million records of Email addresses and Passwords. The file was indexed by HIBP Shortly after being found.
Compromised data: Email Addresses, Passwords
Sometime in 2019, a large amount of combolists became exposed in an open directory on the domain "demo.zeeroq.com". The amount of records totaled over 200 million records of Email addresses and Passwords. The file was indexed by HIBP Shortly after being found.
Compromised data: Email Addresses, Passwords
TSA NoFly List Database
The No Fly List is a small subset of the U.S. government Terrorist Screening Database (also known as the terrorist watchlist) that contains the identity information of known or suspected terrorists. This database is maintained by the FBIs Terrorist Screening Center. On January 19, 2023, Swiss hacker "maia arson crimew" reported that she had gained access to 2019 versions of the No Fly List stored by CommuteAir on an unsecured cloud server. The leak led to the exposure of data including Full names and Dates of Birth. In total, 1.8 million people were affected. Full credit for this hack goes to "maia arson crimew".
Compromised data: Full names, Dates of Birth
👺
The No Fly List is a small subset of the U.S. government Terrorist Screening Database (also known as the terrorist watchlist) that contains the identity information of known or suspected terrorists. This database is maintained by the FBIs Terrorist Screening Center. On January 19, 2023, Swiss hacker "maia arson crimew" reported that she had gained access to 2019 versions of the No Fly List stored by CommuteAir on an unsecured cloud server. The leak led to the exposure of data including Full names and Dates of Birth. In total, 1.8 million people were affected. Full credit for this hack goes to "maia arson crimew".
Compromised data: Full names, Dates of Birth
👺
EDAboard Database
Sometime in 2015, the Electronics Discussion Forum focused on EDA software known as EDAboard suffered a data breach. The attack led to the exposure of data including Usernames, Email addresses and Passwords stored as vBulletin hashes. In total, 459k users were affected.
Compromised data: Usernames, Email addresses, Passwords
🫥
Sometime in 2015, the Electronics Discussion Forum focused on EDA software known as EDAboard suffered a data breach. The attack led to the exposure of data including Usernames, Email addresses and Passwords stored as vBulletin hashes. In total, 459k users were affected.
Compromised data: Usernames, Email addresses, Passwords
🫥