A total of 9 breaches were found and analysed resulting in 2,774,862 leaked accounts containing a total of 14 different data types. The breaches found publicly and freely available included Classmates, World Sports Exchange, Lovatel, Alora RSPS and Tank Store. Sign in to view the full BreachAware Breach Index which includes, where available, reference articles relating to each breach.

SPOTLIGHT

An Indonesian boutique hotel company recently suffered a data breach with a portion of its database dumped online. It's on the small side of things but when it comes to plush hotels and a reasonable amount of datasets, we're betting the clientele expect a high degree of a privacy. The breach checks out with full names, hashed passwords, and a variety of account information regarding the comings and goings of their guests.

Next up, a mixology subscription service created in 2015 out of New York has been breached. The site offers a service where customers regularly receive various recipes, complete with drinks and garnishes in the mail. The breached data has made its way onto several channels with some fairly sensitive data types including payment methods as well as physical addresses and full names.

This last breach is pretty interesting, an 85 year old family business out of central Africa started a bank in the Congo back in 2003. A member of our team found data related to the bank available publicly and since seen it in circulation on various underground forums. A number of datatypes have been exposed including browser fingerprints, device information and administrator login details. We've not seen any disclosures by the company to date.