Important: BreachAware does not operate under any other brand name and will never provide unauthorised access to compromised credentials. We ask our users to beware of illegitimate websites imitating BreachAware.

BreachAware Dashboard

Accessed on Thursday, 17-Jan-2019 09:33:26 UTC from IP address 18.205.246.238
Follow BreachAware

Perform Quick Domain Scan

Strict Use Policy: Prevention and detection of crime; as part of a system of risk management.

Realtime Feed

Realtime data discovered by the BreachAware platform in the last 5 minutes

Autodiscovered Credentials

Data discovered by the BreachAware platform in the last week

Scan Activity

Scan audit log

Login to view activity

Account Activity

Account Audit Log

Login to view activity

Infosec News Feed

An aggregated list of cybersecurity publications
2019-01-16 22:09:00 UTC
ThreatPost
ThreatPost
Threatpost Survey Says: 2FA is Just Fine, But Go Ahead and Kill SMS

Our reader poll showed overwhelming support for 2FA even in the wake of a bypass tool being released -- although lingering concerns remain.

Mobile Security Privacy Web Security 2FA Biometrics Bypass Is It Broken One Time Password Reader Poll SMS Survey Two Factor Authentication
2019-01-16 20:25:00 UTC
ThreatPost
ThreatPost
Millions of Oklahoma Gov Files Exposed by Wide-Open Server

The storage server was left open for about a week and exposed everything from sensitive FBI investigations to data related to patients with AIDS.

Breach Government Privacy Web Security Aids Patients Broker Information Credentials Data Leak Oklahoma Department Of Securities Open Storage Server
2019-01-16 19:30:00 UTC
Dark Reading
Dark Reading
How the US Chooses Which Zero-Day Vulnerabilities to Stockpile

When it comes to acceptable circumstances for government disclosure of zero-days, the new Vulnerabilities Equity Process might be the accountability practice security advocates have been waiting for.

2019-01-16 19:15:00 UTC
Dark Reading
Dark Reading
BEC Groups Ramp Up Payroll Diversion Attacks

Criminals are increasingly trying to defraud businesses by diverting payrolls of CEOs, other senior executives, Agari says.

2019-01-16 17:15:00 UTC
The Daily Swig
The Daily Swig
XSS slip-up exposed Fortnite gamers to account hijack

Login credentials could have been stolen with ease

2019-01-16 17:00:00 UTC
Dark Reading
Dark Reading
Fortnite Players at Risk Via Epic Games Vulnerability

Bugs in Epic Games' platform could let intruders take over players' accounts, view personal data, and/or buy in-game currency.

2019-01-16 17:00:00 UTC
Dark Reading
Dark Reading
Fortnite Players Compromised Via Epic Games Vulnerability

Bugs in Epic Games' platform could let intruders take over players' accounts, view personal data, and/or buy in-game currency.

2019-01-16 16:47:00 UTC
ThreatPost
ThreatPost
U.S. Issues Multiple Charges For 2016 SEC Hack

The two were able to hack into the SEC's computer systems due to phishing attacks that stole credentials and spread malware.

Critical Infrastructure Hacks Vulnerabilities DOJ Malware Phishing SEC SEC Hack
2019-01-16 16:16:00 UTC
ThreatPost
ThreatPost
Fortnite Hacked Via Insecure Single Sign-On

Leaky Fortnite single sign-on mechanism could have allowed hackers to access game accounts.

Hacks Privacy Vulnerabilities Epic Games Fortnite Oauth Single Sign-on
2019-01-16 15:52:00 UTC
The Daily Swig
The Daily Swig
Pwn2Own 2019: Hackers can now scoop $80,000 for Chrome exploits

Added premium placed on Chromium flaws ahead of Microsoft’s Edge migration