πΊ
In May 2024, the conservative news website The Post Millennial suffered a data breach. The breach resulted in the defacement of the website and links posted to 3 different corpuses of data including hundreds of writers and editors (IP, physical address and email exposed), tens of thousands of subscribers to the site (name, email, username, phone and plain text password exposed), and tens of millions of email addresses from thousands of mailing lists alleged to have been used by The Post Millennial (this has not been independently verified). The mailing lists appear to be sourced from various campaigns not necessarily run by The Post Millennial and contain a variety of different personal attributes including name, phone and physical address (depending on the campaign). The data was subsequently posted to a popular hacking forum and extensively torrented.
Compromised data: Email addresses, Genders, IP addresses, Names, Passwords, Phone numbers, Physical addresses, Usernames
πΊ
In May 2024, the conservative news website The Post Millennial suffered a data breach. The breach resulted in the defacement of the website and links posted to 3 different corpuses of data including hundreds of writers and editors (IP, physical address and email exposed), tens of thousands of subscribers to the site (name, email, username, phone and plain text password exposed), and tens of millions of email addresses from thousands of mailing lists alleged to have been used by The Post Millennial (this has not been independently verified). The mailing lists appear to be sourced from various campaigns not necessarily run by The Post Millennial and contain a variety of different personal attributes including name, phone and physical address (depending on the campaign). The data was subsequently posted to a popular hacking forum and extensively torrented.
Compromised data: Email addresses, Genders, IP addresses, Names, Passwords, Phone numbers, Physical addresses, Usernames
πΊ
π
Approximately in February 2024, French e-commerce website LDLC was breached by @anonyme1456, which publicly posted this on BreachForums.The breach exposed data including over 1.5 million data contains over 1.4 million unique email addresses, genders, names, phone numbers and physical addresses.
Compromised data: Email addresses, Genders, Names, Phone numbers, Physical addresses, Website activity
The .7z File's MD5 Hash is C8F089FF85F33C07C0334862D5211CD4. In total, there are 1467144 records. The file is 692.05MB uncompressed and 70.62MB compressed.
πΏ
Approximately in February 2024, French e-commerce website LDLC was breached by @anonyme1456, which publicly posted this on BreachForums.The breach exposed data including over 1.5 million data contains over 1.4 million unique email addresses, genders, names, phone numbers and physical addresses.
Compromised data: Email addresses, Genders, Names, Phone numbers, Physical addresses, Website activity
The .7z File's MD5 Hash is C8F089FF85F33C07C0334862D5211CD4. In total, there are 1467144 records. The file is 692.05MB uncompressed and 70.62MB compressed.
πΏ
π
Approximately in June 2024, French French Sports Store Sport2000 (https://www.sport2000.fr/) was breached by @anonyme1456, which publicly posted this on BreachForums. The breach exposed data including over 4.3 million data contains over 3.2 million unique email addresses, account balances, dates of birth, names, phone numbers and physical addresses.
Compromised data: Account balances, Dates of birth, Email addresses, Names, Phone numbers, Physical addresses, Website activity
The .7z File's MD5 Hash is F3B5A5F2043516FB52AB956552A0AF06. In total, there are 3217146 records. The file is 1.12GB uncompressed and 196.61MB compressed.
π
Approximately in June 2024, French French Sports Store Sport2000 (https://www.sport2000.fr/) was breached by @anonyme1456, which publicly posted this on BreachForums. The breach exposed data including over 4.3 million data contains over 3.2 million unique email addresses, account balances, dates of birth, names, phone numbers and physical addresses.
Compromised data: Account balances, Dates of birth, Email addresses, Names, Phone numbers, Physical addresses, Website activity
The .7z File's MD5 Hash is F3B5A5F2043516FB52AB956552A0AF06. In total, there are 3217146 records. The file is 1.12GB uncompressed and 196.61MB compressed.
π
www.sport2000.fr
SPORT 2000 | Votre magasin de sport en ligne. Les plus grandes marques au meilleur prix.
VΓͺtements, accessoires et chaussures de sport pour Homme, Femme et Enfant. Des milliers d'articles Γ petit prix, les plus grandes marques de sport et mode, livraison Γ domicile.
πΊ
In April 2024, 2.1M email addresses from the online health products store Piping Rock were publicly posted to a popular hacking forum. The data also included names, phone numbers and physical addresses. The account posting the data had previously posted multiple other data breaches which all appear to have been obtained from the Shopify service used by the respective websites.
Compromised data: Email addresses, Names, Phone numbers, Physical addresses, Website activity
πΊ
In April 2024, 2.1M email addresses from the online health products store Piping Rock were publicly posted to a popular hacking forum. The data also included names, phone numbers and physical addresses. The account posting the data had previously posted multiple other data breaches which all appear to have been obtained from the Shopify service used by the respective websites.
Compromised data: Email addresses, Names, Phone numbers, Physical addresses, Website activity
πΊ
πΊ
In April 2024, the Spanish company providing various household services Expandia (Expandia.com.es) was breached and publicly leaked data over 3 million clients. The breach includes over 303k unique email addresses, names, phone numbers and physical addresses.The data was breached by @opkoke
Compromised data: Email addresses, Names, Phone numbers, Physical addresses
πΊ
In April 2024, the Spanish company providing various household services Expandia (Expandia.com.es) was breached and publicly leaked data over 3 million clients. The breach includes over 303k unique email addresses, names, phone numbers and physical addresses.The data was breached by @opkoke
Compromised data: Email addresses, Names, Phone numbers, Physical addresses
πΊ
πΊ
Approximately in June 2024, Los Angeles Unified School District suffered a data breach that exposed over.The breach exposed data including over 24 million data contains over 2 million unique email addresses and also contains students, parents and staff members ages, dates of birth, education levels, ethnicities, family members' names, family structure, genders, government issued IDs (SSN's), home ownership statuses, income levels, job titles, names, net worths, phone numbers, physical addresses, school grades (class levels), spoken languages and usernames.The leak also included various social statuses of students, such as poverty, homelessness, migrant status, etc. The data was breached and leaked on BreachForums by @Satanic .
Compromised data: Ages, Dates of birth, Education levels, Email addresses, Ethnicities, Family members' names, Genders, Government issued IDs, Home ownership statuses, Income levels, Job titles, Marital statuses, Names, Net worths, Phone numbers, Physical addresses, School grades (class levels), Spoken languages, Usernames
πΊ
Approximately in June 2024, Los Angeles Unified School District suffered a data breach that exposed over.The breach exposed data including over 24 million data contains over 2 million unique email addresses and also contains students, parents and staff members ages, dates of birth, education levels, ethnicities, family members' names, family structure, genders, government issued IDs (SSN's), home ownership statuses, income levels, job titles, names, net worths, phone numbers, physical addresses, school grades (class levels), spoken languages and usernames.The leak also included various social statuses of students, such as poverty, homelessness, migrant status, etc. The data was breached and leaked on BreachForums by @Satanic .
Compromised data: Ages, Dates of birth, Education levels, Email addresses, Ethnicities, Family members' names, Genders, Government issued IDs, Home ownership statuses, Income levels, Job titles, Marital statuses, Names, Net worths, Phone numbers, Physical addresses, School grades (class levels), Spoken languages, Usernames
πΊ
πΊ
In October 2023, the Chinese adult forum known as Haijiao.com was hacked and over 4.8 million users were exposed publicly.It was posted by @lxstcxntury and includes over 4.8 milliom unique email addresses, account balances, IP addresses, phone numbers, usernames and bcrypt passwords.
Compromised data: Account balances, Email addresses, IP addresses, Passwords, Phone numbers, Usernames, Website activity
πΊ
In October 2023, the Chinese adult forum known as Haijiao.com was hacked and over 4.8 million users were exposed publicly.It was posted by @lxstcxntury and includes over 4.8 milliom unique email addresses, account balances, IP addresses, phone numbers, usernames and bcrypt passwords.
Compromised data: Account balances, Email addresses, IP addresses, Passwords, Phone numbers, Usernames, Website activity
πΊ
πΊ
Vertafore announced that information of 27.7 million Texas drivers has been accidentally exposed due to a human error in March 2020. The company disclosed this security breach this week, data was stored on an unsecured external storage service and they were accessed by an external party.βThe files, which included driver information for licenses issued before February 2019, contained Texas driver license numbers, as well as names, dates of birth, addresses and vehicle registration histories. They did not contain any Social Security numbers or financial account information. No information misuse has been identified.β
Compromised data: Dates of birth, Driver's licenses, Physical addresses, Vehicle details
πΊ
Vertafore announced that information of 27.7 million Texas drivers has been accidentally exposed due to a human error in March 2020. The company disclosed this security breach this week, data was stored on an unsecured external storage service and they were accessed by an external party.βThe files, which included driver information for licenses issued before February 2019, contained Texas driver license numbers, as well as names, dates of birth, addresses and vehicle registration histories. They did not contain any Social Security numbers or financial account information. No information misuse has been identified.β
Compromised data: Dates of birth, Driver's licenses, Physical addresses, Vehicle details
πΊ
π
In May 2024, the American luxury retailer Neiman Marcus suffered a data breach which was later posted to a popular hacking forum. The data included 31M unique email addresses, names, phone numbers, dates of birth, physical addresses and partial credit card data (note: this is insufficient to make purchases). The breach was traced back to a series of attacks against the Snowflake cloud service which impacted 165 organisations worldwide.
I would like to warn users this leak is over 86.11GB uncompressed and 9.35GB compressed.
Compromised data: Dates of birth, Email addresses, IP addresses, Names, Partial credit card data, Phone numbers, Physical addresses, Purchases
πΏ
In May 2024, the American luxury retailer Neiman Marcus suffered a data breach which was later posted to a popular hacking forum. The data included 31M unique email addresses, names, phone numbers, dates of birth, physical addresses and partial credit card data (note: this is insufficient to make purchases). The breach was traced back to a series of attacks against the Snowflake cloud service which impacted 165 organisations worldwide.
I would like to warn users this leak is over 86.11GB uncompressed and 9.35GB compressed.
Compromised data: Dates of birth, Email addresses, IP addresses, Names, Partial credit card data, Phone numbers, Physical addresses, Purchases
πΏ
π
In April 2024, a substantial volume of data was taken from the Bangladeshi IT services provider Tappware and published to a popular hacking forum. Comprising of 95k unique email addresses, the data also included extensive labour information on local citizens including names, physical addresses, job titles, dates of birth, genders and scans of government issued national identity (NID) cards.
Compromised data: Dates of birth, Email addresses, Genders, Government issued IDs, Job titles, Names, Phone numbers, Physical addresses, Religions
πΏ
In April 2024, a substantial volume of data was taken from the Bangladeshi IT services provider Tappware and published to a popular hacking forum. Comprising of 95k unique email addresses, the data also included extensive labour information on local citizens including names, physical addresses, job titles, dates of birth, genders and scans of government issued national identity (NID) cards.
Compromised data: Dates of birth, Email addresses, Genders, Government issued IDs, Job titles, Names, Phone numbers, Physical addresses, Religions
πΏ
π
In March 2023, DC Health Link discovered a data breach that was later publicly posted to a popular data breach forum. The impacted data included 48k unique email addresses alongside names, genders, dates of birth, home addresses, phone numbers and social security numbers. The data was provided to HIBP by a source who requested it be attributed to @Aegis and @IntelBroker
Compromised data: Citizenship statuses, Dates of birth, Email addresses, Employers, Ethnicities, Genders, Names, Phone numbers, Physical addresses, Purchases, Social security numbers
πΏ
In March 2023, DC Health Link discovered a data breach that was later publicly posted to a popular data breach forum. The impacted data included 48k unique email addresses alongside names, genders, dates of birth, home addresses, phone numbers and social security numbers. The data was provided to HIBP by a source who requested it be attributed to @Aegis and @IntelBroker
Compromised data: Citizenship statuses, Dates of birth, Email addresses, Employers, Ethnicities, Genders, Names, Phone numbers, Physical addresses, Purchases, Social security numbers
πΏ
π
In December 2018, the photo sharing social network Fotolog suffered a data breach that exposed 16.7 million unique email addresses. The data also included usernames and unsalted SHA-256 password hashes. The site was dissolved the following year and repurposed as a news website based in Brcko, Bosnia and Herzegovina.
Compromised data: Email addresses, Passwords, Usernames
πΏ
In December 2018, the photo sharing social network Fotolog suffered a data breach that exposed 16.7 million unique email addresses. The data also included usernames and unsalted SHA-256 password hashes. The site was dissolved the following year and repurposed as a news website based in Brcko, Bosnia and Herzegovina.
Compromised data: Email addresses, Passwords, Usernames
πΏ
π
In February 2024, 200k Facebook Marketplace records allegedly obtained from a Meta contractor in October 2023 were posted to a popular hacking forum. The data contained 77k unique email addresses alongside names, phone numbers, Facebook profile IDs and geographic locations. The data also contained bcrypt password hashes, although there is no indication these belong to the corresponding Facebook accounts. The data was breached by hacker algoatson and posted by @IntelBroker . You can also find a cleaned version of the leak here - https://breachforums.st/Thread-CLEANED-F...ase-Leaked (Posted by @ygrek)
Compromised data: Email addresses, Geographic locations, Names, Passwords, Phone numbers, Social media profiles
πΏ
In February 2024, 200k Facebook Marketplace records allegedly obtained from a Meta contractor in October 2023 were posted to a popular hacking forum. The data contained 77k unique email addresses alongside names, phone numbers, Facebook profile IDs and geographic locations. The data also contained bcrypt password hashes, although there is no indication these belong to the corresponding Facebook accounts. The data was breached by hacker algoatson and posted by @IntelBroker . You can also find a cleaned version of the leak here - https://breachforums.st/Thread-CLEANED-F...ase-Leaked (Posted by @ygrek)
Compromised data: Email addresses, Geographic locations, Names, Passwords, Phone numbers, Social media profiles
πΏ
π
In April 2024 (The relevance of the files is April 2021), the Tea Too (https://www.t2tea.com/) chain of specialty tea shops with stores in Australia, Singapore, and New Zealand was hacked by doubl and leaked by @emo on BreachForums. The leak includes over 94k users, contains over 85k unique email addresses, dates of birth, genders ( <title> and <gender> fields), names, partial credit card data (partial card numbers like XXXX-XXXX-XXXX-7438 and card type), payment methods, phone numbers, physical addresses and passwords stored as possible scrypt hashes. The leak also contains orders information.
Compromised data: Dates of birth, Email addresses, Genders, Names, Partial credit card data, Payment methods, Passwords, Phone numbers, Physical addresses, Purchases, Website activity
πΏ
In April 2024 (The relevance of the files is April 2021), the Tea Too (https://www.t2tea.com/) chain of specialty tea shops with stores in Australia, Singapore, and New Zealand was hacked by doubl and leaked by @emo on BreachForums. The leak includes over 94k users, contains over 85k unique email addresses, dates of birth, genders ( <title> and <gender> fields), names, partial credit card data (partial card numbers like XXXX-XXXX-XXXX-7438 and card type), payment methods, phone numbers, physical addresses and passwords stored as possible scrypt hashes. The leak also contains orders information.
Compromised data: Dates of birth, Email addresses, Genders, Names, Partial credit card data, Payment methods, Passwords, Phone numbers, Physical addresses, Purchases, Website activity
πΏ
T2 Tea
T2 Tea: Discover a World of Tea Done Differently
All we do, all we are, revolves around our love for reinventing and reimagining the humble tea leaf. Celebrate your endless love for tea with T2 today.
π
In November 2022, the Indonesian oil and gas company Pertamina suffered a data breach of their MyPertamina service. The incident exposed 44M records with 6M unique email addresses along with names, dates of birth, genders, physical addresses and purchases.
Compromised data: Dates of birth, Email addresses, Genders, Names, Phone numbers, Physical addresses, Purchases
π
In November 2022, the Indonesian oil and gas company Pertamina suffered a data breach of their MyPertamina service. The incident exposed 44M records with 6M unique email addresses along with names, dates of birth, genders, physical addresses and purchases.
Compromised data: Dates of birth, Email addresses, Genders, Names, Phone numbers, Physical addresses, Purchases
π
π
In approximately June 2016, the real estate website StreetEasy suffered a data breach. In total, 988k unique email addresses were included in the breach alongside names, usernames and SHA-1 hashes of passwords, all of which appeared for sale on a dark web marketplace in February 2019.
Compromised data: Email addresses, Names, Passwords, Usernames
π
In approximately June 2016, the real estate website StreetEasy suffered a data breach. In total, 988k unique email addresses were included in the breach alongside names, usernames and SHA-1 hashes of passwords, all of which appeared for sale on a dark web marketplace in February 2019.
Compromised data: Email addresses, Names, Passwords, Usernames
π
π
In April 2024, nearly 6 million records of Salvadoran citizens were published to a popular hacking forum. The data included names, dates of birth, phone numbers, physical addresses and nearly 1M unique email addresses. Further, over 5M corresponding profile photos were also included in the breach.
This leak does not include profile photos, you can find the full version here.
Compromised data: Dates of birth, Email addresses, Government issued IDs, Names, Phone numbers, Physical addresses, Profile photos
πΏ
In April 2024, nearly 6 million records of Salvadoran citizens were published to a popular hacking forum. The data included names, dates of birth, phone numbers, physical addresses and nearly 1M unique email addresses. Further, over 5M corresponding profile photos were also included in the breach.
This leak does not include profile photos, you can find the full version here.
Compromised data: Dates of birth, Email addresses, Government issued IDs, Names, Phone numbers, Physical addresses, Profile photos
πΏ
π
In December 2018, the mapping website Mappery suffered a data breach that exposed over 205k unique email addresses. The incident also exposed usernames, the geographic location of the user and passwords stored as unsalted SHA-1 hashes. No response was received from Mappery when contacted about the incident.
Note: This is not a complete leak, the complete leak contains 205.242 unique email addresses, it also contains geographic locations and usernames in addition to the specified data. If you have this leak and you want to share it with the forum, then please contact @Baphomet or @Addka72424 or post a thread with the leak on the forum.
Compromised data: Email addresses, Geographic locations, Passwords, Usernames
πΏ
In December 2018, the mapping website Mappery suffered a data breach that exposed over 205k unique email addresses. The incident also exposed usernames, the geographic location of the user and passwords stored as unsalted SHA-1 hashes. No response was received from Mappery when contacted about the incident.
Note: This is not a complete leak, the complete leak contains 205.242 unique email addresses, it also contains geographic locations and usernames in addition to the specified data. If you have this leak and you want to share it with the forum, then please contact @Baphomet or @Addka72424 or post a thread with the leak on the forum.
Compromised data: Email addresses, Geographic locations, Passwords, Usernames
πΏ
π
In March 2024, the online games community Mr. Green Gaming suffered a data breach that exposed 27k user records. Acknowledged on their Discord server, the incident exposed email and IP addresses, usernames, geographic locations and dates of birth.
Compromised data: Dates of birth, Email addresses, Geographic locations, IP addresses, Usernames
π
In March 2024, the online games community Mr. Green Gaming suffered a data breach that exposed 27k user records. Acknowledged on their Discord server, the incident exposed email and IP addresses, usernames, geographic locations and dates of birth.
Compromised data: Dates of birth, Email addresses, Geographic locations, IP addresses, Usernames
π
πΊ
In March 2024, WoTLabs (World of Tanks Statistics and Resources) suffered a data breach and website defacement attributed to "chromebook breachers". The breach exposed 22k forum members' personal data including email and IP addresses, usernames, dates of birth and time zones.
Compromised data: Dates of birth, Email addresses, IP addresses, Time zones, Usernames
πΊ
In March 2024, WoTLabs (World of Tanks Statistics and Resources) suffered a data breach and website defacement attributed to "chromebook breachers". The breach exposed 22k forum members' personal data including email and IP addresses, usernames, dates of birth and time zones.
Compromised data: Dates of birth, Email addresses, IP addresses, Time zones, Usernames
πΊ
π
In January 2023, 1.4M records from the Autotrader online vehicle marketplace appeared on a popular hacking forum. Autotrader stated that the "data in question relates to aged listing data that was generally publicly available on our site at the time and open to automated collection methods". The data contained 20k unique email addresses alongside physical addresses and phone numbers of dealers and vehicle details including VIN numbers. The data was breached by @IntelBroker
Compromised data: Email addresses, Phone numbers, Physical addresses, Vehicle details, Vehicle identification numbers (VINs)
π
In January 2023, 1.4M records from the Autotrader online vehicle marketplace appeared on a popular hacking forum. Autotrader stated that the "data in question relates to aged listing data that was generally publicly available on our site at the time and open to automated collection methods". The data contained 20k unique email addresses alongside physical addresses and phone numbers of dealers and vehicle details including VIN numbers. The data was breached by @IntelBroker
Compromised data: Email addresses, Phone numbers, Physical addresses, Vehicle details, Vehicle identification numbers (VINs)
π