3,588 Total Breaches
281,212 Total Pastes
1 Breaches (30 days)
26,401 Pastes (30 days)

Breach Index

An aggregated list of data breaches
  Title Breach Date Description Credentials  
neopets.com Neopets
Domain: neopets.com
May 2013 In May 2016, a set of breached data originating from the virtual pet website "Neopets" was found being traded online. Allegedly hacked "several years earlier", the data contains sensitive personal information including birthdates, genders and names as well as over 35 million email addresses. Passwords were stored in plain text and IP addresses were also contained within the breach. 35,892,436 More Information
tumblr.com Tumblr
Domain: tumblr.com
February 2013 In early 2013, tumblr suffered a data breach which resulted in the exposure of over 65 million accounts. The data was later put up for sale on a dark market website and included email addresses and passwords stored as salted SHA1 hashes. 65,469,298 More Information
yahoo.com Yahoo
Domain: yahoo.com
July 2012 In July 2012, Yahoo! had their online publishing service "Voices" compromised via a SQL injection attack. The breach resulted in the disclosure of nearly half a million usernames and passwords stored in plain text. The breach showed that of the compromised accounts, a staggering 59% of people who also had accounts in the Sony breach reused their passwords across both services. 453,428 More Information
androidforums.com Android Forums
Domain: androidforums.com
July 2012 In October 2011, the Android Forums website was hacked and 745k user accounts were subsequently leaked publicly. The compromised data included email addresses, user birthdays and passwords stored as a salted MD5 hash. 452,537 More Information
adobe.com Adobe
Domain: adobe.com
July 2012 In October 2013, ~153 million Adobe accounts were breached with each containing an internal ID, username, email, encrypted password and a password hint in plain text. The password cryptography was poorly done and many were quickly resolved back to plain text. The unencrypted hints also disclosed much about the passwords adding further to the risk that hundreds of millions of Adobe customers already faced. 152,430,748 More Information
disqus.com Disqus
Domain: disqus.com
July 2012 In October 2017, the comment service Disqus publicly announced that they suffered a data breach. Forensics dated the original leak back to July 2012, however it surfaced several years later in mid 2017 and was widely traded within popular hacking forums. The breach contained over 17.5 million unique email addresses. The leak contained hashed passwords of users who registered directly with Disqus. For the users who registered with a social account, the leak contained references to the specific provider. 17,595,562 More Information
dropbox.com Dropbox
Domain: dropbox.com
July 2012 In mid-2012, Dropbox suffered a data breach which exposed the stored credentials of tens of millions of their customers. In August 2016, they forced password resets for customers they believed may be at risk. A large volume of data totalling over 68 million records was subsequently traded online and included email addresses and salted hashes of passwords (half of them SHA1, half of them bcrypt). 68,648,009 More Information
linkedin.com LinkedIn
Domain: linkedin.com
May 2012 In May 2016, LinkedIn had ~164 million email addresses and passwords exposed online. Originally hacked in 2012, the data remained out of sight until being offered for sale on a dark market site 4 years later. The passwords in the breach were stored as SHA1 hashes without salt, the vast majority of which were quickly cracked in the days following the release of the data. 164,611,595 More Information
last.fm Last.fm
Domain: last.fm
March 2012 In March 2012, the music website Last.fm was hacked and ~43 million user accounts were exposed. Whilst Last.fm knew of an incident back in 2012, the scale of the hack was not known until the data was released publicly in September 2016. The breach included ~37 million unique email addresses, usernames and passwords stored as unsalted MD5 hashes. 37,216,308 More Information
youporn.com YouPorn
Domain: youporn.com
February 2012 In February 2012, the adult website YouPorn had over 1.3M user accounts exposed in a data breach. The publicly released data included both email addresses and plain text passwords. 1,327,567 More Information
infowars.com InfoWars
Domain: infowars.com
January 2012 In 2016, the media outlet InfoWars made news headlines due to a data breach that occurred back in 2012. The data remained relatively well hidden and privately traded until it surfaced and became public in late 2018. The dataset contained email addresses, real names, usernames and MD5 hashed passwords, many of which were easily cracked. The exact date of the original data breach remains unknown. 49,727 More Information
stratfor.com Stratfor
Domain: stratfor.com
December 2011 In December 2011, "Anonymous" attacked the global intelligence company known as "Stratfor" and consequently disclosed a veritable treasure trove of data including hundreds of gigabytes of email and tens of thousands of credit card details which were promptly used by the attackers to make charitable donations (among other uses). The breach also included ~860,000 user accounts complete with email address, time zone, some internal system data and MD5 hashed passwords with no salt. 234,911 More Information
zoosk.com Zoosk
Domain: zoosk.com
January 2011 52,578,183 More Information
gawker.com Gawker
Domain: gawker.com
December 2010 In December 2010, Gawker was attacked by the hacker collective "Gnosis" in retaliation for what was reported to be a feud between Gawker and 4Chan. Information about Gawkers 1.3M users was published along with the data from Gawker's other web presences including Gizmodo and Lifehacker. Due to the prevalence of password reuse, many victims of the breach then had their Twitter accounts compromised to send Acai berry spam. 1,247,574 More Information
myspace.com Myspace
Domain: myspace.com
July 2008 In approximately 2008, MySpace suffered a data breach that exposed almost 360 million accounts. In May 2016, the data was offered up for sale on the "Real Deal" dark market website and included email addresses, usernames and SHA1 hashes of the first 10 characters of the password converted to lowercase and stored without a salt. The exact breach date is unknown, but analysis of the data suggests it was 8 years before being made public. 359,420,698 More Information

Data breaches containing monitored assets are prioritised for uploading into the system. Go PRO to add your organisation assets.

Latest Discoveries
Friday, 22-Feb-2019 02:13:04 UTC
2 seconds ago
Pastebin [TEXT] - eWbvAihj
Author: Anonymous
Title: FULLZ
1 unique credential found
Friday, 22-Feb-2019 02:12:14 UTC
52 seconds ago
Pastebin [HTML4STRICT] - dsSCzFzK
Author: paulshoptalk
Title: Untitled
2 unique credentials found
Friday, 22-Feb-2019 02:07:16 UTC
5 minutes ago
Pastebin [TEXT] - DJktdE9y
Author: CAFE1978
Title: Untitled
3 unique credentials found
Friday, 22-Feb-2019 02:06:58 UTC
6 minutes ago
Pastebin [TEXT] - ife7GMeg
Author: Anonymous
Title: Untitled
1 unique credential found
Friday, 22-Feb-2019 02:06:43 UTC
6 minutes ago
Pastebin [TEXT] - Te7JYgRh
Author: sugeng88
Title: Untitled
1 unique credential found
Friday, 22-Feb-2019 02:04:19 UTC
8 minutes ago
Pastebin [TEXT] - 4eaP1RgE
Author: Anonymous
Title: Hmmmm
218 unique credentials found
Friday, 22-Feb-2019 02:03:16 UTC
9 minutes ago
Pastebin [TEXT] - iV1zsWfg
Author: fabioaragao1
Title: LISS FUN
1 unique credential found
Friday, 22-Feb-2019 02:02:16 UTC
10 minutes ago
Pastebin [TEXT] - BNzwD5Ge
Author: JTSEC1333
Title: Anonymous JTSEC #OpSudan Full Recon #19
9 unique credentials found
Friday, 22-Feb-2019 02:01:13 UTC
11 minutes ago
Pastebin [TEXT] - 3Y2jMxQK
Author: Anonymous
Title: zigsucks2
1 unique credential found
Friday, 22-Feb-2019 01:58:42 UTC
14 minutes ago
Pastebin [TEXT] - YRzeELJ1
Author: Anonymous
Title: Untitled
1 unique credential found
Friday, 22-Feb-2019 01:58:20 UTC
14 minutes ago
Pastebin [HTML4STRICT] - TdEXmJqF
Author: Anonymous
Title: Sc4k4index
1 unique credential found