A total of 33 breaches were found and analysed resulting in 2,068,944 leaked accounts containing a total of 25 different data types. The breaches found publicly and freely available included Kiwi Taxi [2], TaxNet USA, Athletics Federation of India, Stealer - Meta 0239 and B Tech. Sign in to view the full BreachAware Breach Index which includes, where available, reference articles relating to each breach.

SPOTLIGHT

A very well-known video game publisher based in the US suffered a leak via a service platform they use that is hosted by Microsoft. There’s not a huge amount of information surrounding exactly how the data was dumped online however the kinds of datasets compromised are great for threat actors to use for spear phishing campaigns.

Members of a well-known dark-web forum have requested or encouraged the data of high schools throughout the US to be leaked online via pupils or threat actors. So far a member of the team has come across a high school in the state of Maryland's data in circulation for free. For the moment, only email addresses and full names were exposed.

A delivery company out in the US that works closely with Amazon has seen a partially dumped SQL database appear online. The company supplies software that caters to such things as generating unique tracking numbers. So far, they have provided tracking for over 5 million parcels.