3,588
Total Breaches
281,212
Total Pastes
1
Breaches (30 days)
26,399
Pastes (30 days)
Breach Index
An aggregated list of data breaches| Title | Breach Date | Description | Credentials | ||
|---|---|---|---|---|---|
|
Collection #1
Combo List
|
January 2019 |
In January 2019, a huge collection of compromised credentials were found on the filesharing service MEGA. Labelled "Collection #1 Data Breach", this is one of the largest collections of credential stuffing lists with nearly 800 million unique email addresses. The data was sourced from hundreds of breached websites and services, many of which were already well documented in previous years. In many cases it included cracked or "dehashed" passwords that were previously hashed. Collection #1 was found widely circulated on popular hacking forums using bit torrent, and was accompanied by additional collections named 1-5 respectively.
|
799,923,269 | More Information |
|
|
NOVA Entertainment
Domain: novaentertainment.com.au
|
November 2018 |
In early November 2018, a CSV file containing over 240,000 email addresses, SHA1 hashed passwords and many other personal user details from the Australian media network "NOVA Entertainment" was found online. While there is no official ackowledgement of the breach taking place, BreachAware has independently verified this breach to be legimitate. The exact date of the original data breach remains unknown.
|
247,158 | More Information |
|
|
Dreamcodes
Domain: dreamcodes.biz
|
October 2018 |
In early October 2018, a file containing plaintext user credentials for the German programming website Dreamcodes was dumped online. The file contained over 17,000 credentials in the form of an email and plaintext password combination.
|
17,532 | More Information |
|
|
Rangers Football Club
Domain: rangers.co.uk
|
September 2018 |
In September 2018, a file claiming to contain the contents of the Rangers UK football club website user database was posted online. The file included email addresses and MD5 hashed passwords as well as a separate file containing dehashed plaintext passwords. The exact date of the breach is unknown.
|
48,571 | More Information |
|
|
US Insurance Companies Spamlist | September 2018 |
In early September 2018, a file containing the information of more than 260,000 contacts from US insurance companies was posted online. The extensive list was collated for use primarily as a spamlist, but due to the large amount of data in the CSV-formatted file, much of the information leaves the insurance companies open to more complex scams including phishing emails and other social engineering attacks.
|
261,598 | More Information |
|
|
GameReplays
Domain: gamereplays.org
|
August 2018 |
In September 2018, the leaked database of the gaming forum "GameReplays" was posted online, claiming to be a dump from late August 2018. The file included email addresses and hashed passwords using the weak md5 algorithm. This is the second known hacking incident as the site was also breached in mid 2012.
|
269,056 | More Information |
|
|
Hill and Dale Outdoors
Domain: hillanddaleoutdoors.co.uk
|
August 2018 |
Sometime in August 2018, a file containing email addresses and primarily plaintext passwords for the UK ecommerce website "Hill and Dale Outdoors" was posted online. The exact date of the breach is unknown and does not appear to have been publicly acknowledged. BreachAware researchers have verified the breach and notified the company of the breach.
|
24,009 | More Information |
|
|
Artworkshopwithpaul
Domain: artworkshopwithpaul.com
|
August 2018 |
In August 2018, a the databases of over 400 compromised websites were found being traded on a hacking forum and widely distributed to their userbase. Each of the database leaks contained both an email address or username and primarily plaintext passwords. The database collection contained a file named "artworkshopwithpaul.com - kdyrsxni_db1.members2.txt" claiming to contain information from the website at "artworkshopwithpaul.com", and although the validity of this breach cannot be empirically confirmed, BreachAware has independently verified much of the leaked information.
|
3,516 | More Information |
|
|
As-seen-on-tv-reviews
Domain: as-seen-on-tv-reviews.net
|
August 2018 |
In August 2018, a the databases of over 400 compromised websites were found being traded on a hacking forum and widely distributed to their userbase. Each of the database leaks contained both an email address or username and primarily plaintext passwords. The database collection contained a file named "as-seen-on-tv-reviews.net - tvreviews1.Customers1.txt" claiming to contain information from the website at "as-seen-on-tv-reviews.net", and although the validity of this breach cannot be empirically confirmed, BreachAware has independently verified much of the leaked information.
|
3,467 | More Information |
|
|
Asugards
Domain: asugards.edu.eg
|
August 2018 |
In August 2018, a the databases of over 400 compromised websites were found being traded on a hacking forum and widely distributed to their userbase. Each of the database leaks contained both an email address or username and primarily plaintext passwords. The database collection contained a file named "asugards.edu.eg - all_users.u5sr.txt" claiming to contain information from the website at "asugards.edu.eg", and although the validity of this breach cannot be empirically confirmed, BreachAware has independently verified much of the leaked information.
|
62 | More Information |
|
|
Atelierdelaruelle
Domain: atelierdelaruelle.com
|
August 2018 |
In August 2018, a the databases of over 400 compromised websites were found being traded on a hacking forum and widely distributed to their userbase. Each of the database leaks contained both an email address or username and primarily plaintext passwords. The database collection contained a file named "atelierdelaruelle.com - atelierdlweb.peel_utilisateurs.txt" claiming to contain information from the website at "atelierdelaruelle.com", and although the validity of this breach cannot be empirically confirmed, BreachAware has independently verified much of the leaked information.
|
3,718 | More Information |
|
|
Awanacanada
Domain: awanacanada.ca
|
August 2018 |
In August 2018, a the databases of over 400 compromised websites were found being traded on a hacking forum and widely distributed to their userbase. Each of the database leaks contained both an email address or username and primarily plaintext passwords. The database collection contained a file named "awanacanada.ca - RWT_development.rwt_user.txt" claiming to contain information from the website at "awanacanada.ca", and although the validity of this breach cannot be empirically confirmed, BreachAware has independently verified much of the leaked information.
|
83 | More Information |
|
|
Mcgilleus
Domain: axolotl.mcgilleus.ca
|
August 2018 |
In August 2018, a the databases of over 400 compromised websites were found being traded on a hacking forum and widely distributed to their userbase. Each of the database leaks contained both an email address or username and primarily plaintext passwords. The database collection contained a file named "axolotl.mcgilleus.ca - axolotl.Voters.txt" claiming to contain information from the website at "mcgilleus.ca", and although the validity of this breach cannot be empirically confirmed, BreachAware has independently verified much of the leaked information.
|
25,161 | More Information |
|
|
Balboastitch
Domain: balboastitch.com
|
August 2018 |
In August 2018, a the databases of over 400 compromised websites were found being traded on a hacking forum and widely distributed to their userbase. Each of the database leaks contained both an email address or username and primarily plaintext passwords. The database collection contained a file named "balboastitch.com - balboast_gkgcart.customers.txt" claiming to contain information from the website at "balboastitch.com", and although the validity of this breach cannot be empirically confirmed, BreachAware has independently verified much of the leaked information.
|
2,594 | More Information |
|
|
Bambou-diffusion
Domain: bambou-diffusion.com
|
August 2018 |
In August 2018, a the databases of over 400 compromised websites were found being traded on a hacking forum and widely distributed to their userbase. Each of the database leaks contained both an email address or username and primarily plaintext passwords. The database collection contained a file named "bambou-diffusion.com - bamboudifra.client.txt" claiming to contain information from the website at "bambou-diffusion.com", and although the validity of this breach cannot be empirically confirmed, BreachAware has independently verified much of the leaked information.
|
6,057 | More Information |
Data breaches containing monitored assets are prioritised for uploading into the system. Go PRO to add your organisation assets.
Latest Discoveries
Friday, 22-Feb-2019 02:13:04 UTC
1 minute ago
1 minute ago
1 unique credential found
Friday, 22-Feb-2019 02:12:14 UTC
1 minute ago
1 minute ago
2 unique credentials found
Friday, 22-Feb-2019 02:07:16 UTC
6 minutes ago
6 minutes ago
3 unique credentials found
Friday, 22-Feb-2019 02:06:58 UTC
7 minutes ago
7 minutes ago
1 unique credential found
Friday, 22-Feb-2019 02:06:43 UTC
7 minutes ago
7 minutes ago
1 unique credential found
Friday, 22-Feb-2019 02:04:19 UTC
9 minutes ago
9 minutes ago
218 unique credentials found
Friday, 22-Feb-2019 02:03:16 UTC
10 minutes ago
10 minutes ago
1 unique credential found
Friday, 22-Feb-2019 02:02:16 UTC
11 minutes ago
11 minutes ago
9 unique credentials found
Friday, 22-Feb-2019 02:01:13 UTC
12 minutes ago
12 minutes ago
1 unique credential found
Friday, 22-Feb-2019 01:58:42 UTC
15 minutes ago
15 minutes ago
1 unique credential found
Friday, 22-Feb-2019 01:58:20 UTC
15 minutes ago
15 minutes ago
1 unique credential found