Have I Been Pwned@haveibeenpwned
Check if you have an email address or password that has been compromised in a data breach. Created and maintained by @troyhunt. haveibeenpwned.com Australia Joined November 2013-
Tweets808
-
Followers163K
-
Following1
-
Likes0
New breach: English Cricket had 43k records breached from their icoachcricket website last week. Data included email address and either bcrypt or salted MD5 password hash, or both together. 75% were already in @haveibeenpwned. Read more: thecricketer.com/Topics/grassro…
New breach: Exvagos had 2.1M records breached in July 2022 and later redistributed as part of a larger breach corpus. The impacted data included email and IP address, username, DoB and MD5 password hash. 85% were already in @haveibeenpwned. Read more: cybernews.com/security/billi…
New breach: The forum for GSM-Hosting had 2.6M records breached in August 2016 and sold with 2 dozen other hacked websites. Data included email and IP address, username and salted MD5 password hash. 74% were already in @haveibeenpwned. Read more: hackread.com/vbulletin-foru…
New breach: MMO and RPG game SwordFantasy had 2.7M records breached in Jan 2019. Data included email and IP address, username and salted MD5 password hash. 95% were already in @haveibeenpwned haveibeenpwned.com
New breach: MediaWorks in New Zealand had 163k unique email addresses posted to a hacking forum this week. Data included name, physical address, phone, gender, DoB and answers to competition questions. 70% were already in @haveibeenpwned. Read more: rnz.co.nz/news/national/…
New unverified breach: AT&T allegedly had 49M unique records breached in 2021 although advised it not originate from their service. Data included name, email & physical address, phone, DoB & social security number. 77% were already in @haveibeenpwned troyhunt.com/inside-the-mas…
New breach: Photo sharing service ClickASnap had 3.3M records breached in Sep 2022 including email, username and SHA-512 password hash. Paid subscriptions also exposed name, physical address and amount paid. 56% were already in @haveibeenpwned. Read more: blog.clickasnap.com/2022/10/14/cli…
New breach: Indian e-commerce service Flipkart had 552k records breached in Sep 2022 including email, lat and long, name and phone. 23% were already in @haveibeenpwned. Read more: izoologic.com/region/central…
New breach: Brazilian fast food company "Habib's" had 3.5M records breached in Aug 2021 and later redistributed as part of a larger corpus. Data included email and IP address, DoB, phone and social profile link. 66% were already in @haveibeenpwned. More: cybernews.com/security/billi…
New breach: Taiwanese Android forum APK[.]TW had 2.5M records breached in Sep 2022 and later redistributed as part of a larger corpus. Data included email and IP address, username and salted MD5 password hash. 63% were already in @haveibeenpwned. More: cybernews.com/security/billi…
New breach: Russian e-commerce website "Online Trade" (Онлайн Трейд) had 3.8M records breached in 2022. Data included email and IP address, name, phone, DoB and MD5 password hashes. 74% were already in @haveibeenpwned. Read more: xakep.ru/2022/09/21/new…
New breach: WoTLabs had 22k records breached earlier this week and website defaced. Data included email and IP address, username, DoB and time zone. 80% were already in @haveibeenpwned. More: web.archive.org/web/2024030306…
New breach: Mr. Green Gaming had 27k records breached last week including email and IP address, username, geographic location and DoB. 75% were already in @haveibeenpwned haveibeenpwned.com
New breach: AI-powered design platform Cutout[.]Pro had 20M records breached earlier this week including email and IP address, name and salted MD5 password hash. 29% were already in @haveibeenpwned. Read more: x.com/H4ckManac/stat…
New breach: AI-powered design platform Cutout[.]Pro had 20M records breached earlier this week including email and IP address, name and salted MD5 password hash. 29% were already in @haveibeenpwned. Read more: x.com/H4ckManac/stat…
New breach: Tangerine had 243k customer emails breached last week. The data included physical address, phone, name, DoB and legacy bcrypt password hash. 68% were already in @haveibeenpwned. Read more: itnews.com.au/news/tangerine…
New breach: 200k records with 77k unique email allegedly obtained from a Facebook Marketplace contractor were posted online this month. Data also included name, phone, FB profile ID and geographic location. 84% were already in @haveibeenpwned. Read more: bleepingcomputer.com/news/security/…
New breach: Spoutible had 207k records scraped from a misconfigured API including name, email, username, phone, gender, bcrypt password hash, 2FA secret and password reset token. 74% were already in @haveibeenpwned. Read more: troyhunt.com/how-spoutibles…
New breach: Indonesian service MyPertamina was breached in Nov 2022 and 6M unique email addresses exposed. Data included name, DoB, gender, physical address and purchases. 58% were already in @haveibeenpwned. Read more: voi.id/en/technology/…
New breach: Trello had 15M records scraped and posted for sale on a hacking forum last week. Data included names, usernames and email addresses from previous breaches used to enumerate Trello profiles. 100% were already in @haveibeenpwned. Read more: x.com/H4ckManac/stat…
New breach: Trello had 15M records scraped and posted for sale on a hacking forum last week. Data included names, usernames and email addresses from previous breaches used to enumerate Trello profiles. 100% were already in @haveibeenpwned. Read more: x.com/H4ckManac/stat…
New breach: The Naz.API stealer logs and cred stuffing lists were posted to a hacking forum in Sep. Data included 71M email addresses and 100M plain text passwords, often alongside the service they were used for. 67% were already in @haveibeenpwned. More: troyhunt.com/inside-the-mas…