Databases in LeakDB: 168
Total lines in LeakDB: 7,914,232,133
List of leaked databasesLine count
000webhost
15,083,88617.media
27,869,36017173.com
9,601,698212300.com
710,6962games.com
3,427,00451cto.com
2,153,54851Wdata(KR)
510,15152pk.com
15,528,9267k7k.com
14,243,8398fit.com
12,427,6678tracks.com
17,966,126Adobe.com
152,463,136AdultFriendFinder
219,950,221AhaShare.com
192,522Aipai.com
7,378,151AndroidForums.com
742,289Animoto.com
22,427,909ArmorGames.com
10,778,390Aruon.com
146,044AshleyMadison.com
36,380,999Aternos.org
1,241,044Badoo.com
125,357,878Baihe.com
10,708,480BearPawshop.com
96,757BinWeevils.com
6,968,952Bit.ly
9,313,997Bit2Visitor.com
21,491Bitcoin Sec
10,617,937BitcoinTalk.org
77,915BitcoinTrading.com
554BitLeak.net
1,293BitsCircle.com
19,041Bizbilla.com
174,284BlankMediaGames.com
7,775,056Bobmunsa.co.kr
41,123btc60.net
52,179ButterFlyLabs.com
18,185Cannabis.com
227,740Canva.com
137,490,076CashCrate.com
6,869,019CDProjektRed.com
1,871,467Cfire.mail.ru
12,881,731Chanti.se
93,113Cheat-master.net
2,027,072Chegg.com
39,795,446ClassicKorea.co.kr
472,438ClixSense.com
2,222,508CompDB
3,647,926,121CouponMom.com
11,032,684CSDN.net
6,427,814DailyMotion
85,198,342Daniweb.com
1,130,749ddo.com
1,645,214Desura.com
1,146,788DFB.de
2,946,178Diet.com
1,305,298Disqus.com
18,256,322DLH.net
3,231,237DoDoNew.com
16,044,055DragonNest.com
3,143,905Dropbox
68,679,913Dubsmash.com
161,540,830Edmodo.com
76,025,976Elle.co.kr
187,393EloBuddy.com
177,355Email2Name
64,474,140EuroNics.it
438,585Evony
58,238,033Eyeem.com
17,680,303Fashionfantasygame.com
2,498,594FashionPlus.co.kr
661,694FlashFlashRevolution.com
2,005,436Fling.com
40,768,982Forbes.com
1,071,954Forex-Investor.net
42,743FotoBoom.com
86,369FrancoBordo.com
7,145FutureShop.co.uk
13,897Gaadi.com
4,379,949Game-Tuts.com
2,243,788Gamerzplanet.net
1,215,113Gamevn.com
1,372,866Gamigo.com
8,222,941Gfan.com
22,623,724Gigasize.com
1,900,660Gomo.com
51,426,767GPotato.com
2,146,901Groupon.co.id
766,599Habbo.st
270,963Hacker.co.kr
1,396,793Hautelook.com
6,511,612HiAPK.com
14,833,436Houdao.com
28,604,984HSX.com
238,197ht.co.kr
526,584i-Dressup.com
2,205,863icross.co.kr
1,146,133iMesh.com
51,310,675Imgur.com
1,752,885InterPals.net
3,450,214JapanCombo
14,797,059JobStreet.com
3,880,985kickstarter.com
5,175,100Klerk.ru
151,204Last.fm
43,568,954LBSG
11,869,755Leet.cc
6,083,442Linkedin
160,132,580Lotro.com
1,353,686LuminPDF.com
15,458,399MagazineDee.com
107,718MangaFox.me
1,311,320Mate1.com
27,402,292MindaCorporation.com
47,843MisterTao.com
158,204MMGP.ru
108,540ModbSolutions.com
58,840,276MoneyBookers.com
1,799,385Mop.com
2,639,649Morele.net
2,471,156MPGH
3,119,276MtGox.com
12,022Muzhiwan.com
4,494,560MyFitnessPal.com
143,440,534Myheritage.com
78,716,040MySpace
359,158,679Neopets.com
68,520,846NetEase
275,148,302Neteller.com
2,000,085Nexusmods.com
5,920,068Nihonomaru.net
1,698,077Nulled.Io
599,067Pconline.com.cn
5,385,949Poshmark.com
13,904,069Promo.com
2,643,854PubPit.com
51,457QuantShare.com
23,032R2games.com
22,662,608Readnovel.com
17,915,746Renren.com
4,555,094Shadi.com
2,024,280Sharethis.com
40,991,747Shein.com
28,063,039SmartHem.se
53,985StockX.com
6,846,482Stratfor.com
858,345SubaGames.com
3,478,212TabakPfeife24.de
43,582Taobao.com
14,785,530taringa.net
28,224,558TGBUS.com
12,052,683Tianya.cn
29,550,626TintenProfi.ch
90,148Tumblr
73,358,059Twitter
40,389,892uuu9.com
9,691,178VK
100,253,796Wanelo
23,180,862Wattpad
256,574,339WeHeartIt.com
8,604,711Weibo.com
4,505,911Wishbone
40,295,195Xat.comm
5,937,341Youku
97,466,235Zing.vn
163,323,012Zomato.com
16,474,465Zoosk
55,471,885Zynga
35,314,089
000webhost
Leak Details:
In approximately March 2015, the free web hosting provider 000webhost suffered a major data breach that exposed almost 15 million customer records. The data was sold and traded before 000webhost was alerted in October. The breach included names, email addresses and plain text passwords.Total Record Count:
15,083,886Compromised data:
Email addresses, IP addresses, Names, Passwords17.media
Leak Details:
In April 2016, customer data obtained from the streaming app known as "17" appeared listed for sale on a Tor hidden service marketplace. The data contained over 4 million unique email addresses along with IP addresses, usernames and passwords stored as unsalted MD5 hashes.Total Record Count:
27,869,360Compromised data:
Device information, Email addresses, IP addresses, Passwords, Usernames17173.com
Leak Details:
In late 2011, a series of data breaches in China affected up to 100 million users, including 7.5 million from the gaming site known as 17173.Total Record Count:
9,601,698Compromised data:
Email addresses, Passwords, Usernames212300.com
Leak Details:
This database leak was found being spread on a clearnet 'Hacker’s Forum'. Very little is known about this hack and as such is considered unverified. More information will be added about this leak as it comes available.Total Record Count:
710,696Compromised data:
Email addresses, IP addresses, Passwords, Usernames2games.com
Leak Details:
This database leak was found being spread on a clearnet 'Hacker’s Forum'. Very little is known about this hack and as such is considered unverified. More information will be added about this leak as it comes available.Total Record Count:
3,427,004Compromised data:
Email addresses, Passwords51cto.com
Leak Details:
In 2013, 51cto, a Chinese social media site was hacked and over 2 million accounts were leaked to the internet.Total Record Count:
2,153,548Compromised data:
Email addresses, Passwords, Usernames51Wdata(KR)
Leak Details:
In 2017, a leak surfaced from an unknown site which contained sensitive data for Korean nationals including names, phone numbers, and Korean Social Security Numbers.Total Record Count:
510,151Compromised data:
Email addresses, Passwords, Usernames, Real names, Korean Social Security Numbers, Phone numbers52pk.com
Leak Details:
In late 2011, a series of data breaches in China affected up to 100 million users, including the social site known as 52pk. Whilst there is evidence that the data is legitimate, due to the difficulty of emphatically verifying the Chinese breach it has been flagged as "unverified". The data in the breach contains usernames, email addresses and cleartext passwordsTotal Record Count:
15,528,926Compromised data:
Email address, Password, Username7k7k.com
Leak Details:
In approximately 2011, it's alleged that the Chinese gaming site known as 7k7k suffered a data breach that impacted 9.1 million subscribers. The data in the breach contains usernames, email addresses and plain text passwords.Total Record Count:
14,243,839Compromised data:
Email addresses, Passwords, Usernames8fit.com
Leak Details:
In July 2018, the health and fitness service 8fit suffered a data breach. The data subsequently appeared for sale on a dark web marketplace in February 2019 and included over 15M unique email addresses alongside names, genders, IP addresses and passwords stored as bcrypt hashes.Total Record Count:
12,427,667Compromised data:
Email addresses, Genders, Geographic locations, IP addresses, Names, Passwords8tracks.com
Leak Details:
In June 2017, the online playlists service known as 8Tracks suffered a data breach which impacted 18 million accounts. In their disclosure, 8Tracks advised that "the vector for the attack was an employee’s GitHub account, which was not secured using two-factor authentication". Salted SHA-1 password hashes for users who didn't sign up with either Google or Facebook authentication were also included.Total Record Count:
17,966,126Compromised data:
Email addresses, PasswordsAdobe.com
Leak Details:
In October 2013, 153 million Adobe accounts were breached with each containing an internal ID, username, email, encrypted password and a password hint in plain text. The password cryptography was poorly done and many were quickly resolved back to plain text. The unencrypted hints also disclosed much about the passwords adding further to the risk that hundreds of millions of Adobe customers already faced.Total Record Count:
152,463,136Compromised data:
Email addresses, Password hints, Passwords, UsernamesAdultFriendFinder
Leak Details:
In October 2016, the adult entertainment company Friend Finder Networks suffered a massive data breach. The incident impacted multiple separate online assets owned by the company, the largest of which was the Adult FriendFinder website alleged to be "the world's largest sex & swinger community". Exposed data included usernames, passwords stored as SHA-1 hashes and 170 million unique email addresses. This incident is separate to the 2015 data breach Adult FriendFinder also suffered.Total Record Count:
219,950,221Compromised data:
Email addresses, Passwords, UsernamesAhaShare.com
Leak Details:
In May 2013, the torrent site AhaShare.com suffered a breach which resulted in more than 180k user accounts being published publicly. The breach included a raft of personal information on registered users plus despite assertions of not distributing personally identifiable information, the site also leaked the IP addresses used by the registered identities.Total Record Count:
192,522Compromised data:
Email addresses, Genders, Geographic locations, IP addresses, Passwords, Usernames, Website activity, Years of birthAipai.com
Leak Details:
In September 2016, data allegedly obtained from the Chinese gaming website known as Aipai.com and containing 6.5M accounts was leaked online. The data in the breach contains email addresses and MD5 password hashes.Total Record Count:
7,378,151Compromised data:
Email addresses, PasswordsAndroidForums.com
Leak Details:
In October 2011, the Android Forums website was hacked and 745k user accounts were subsequently leaked publicly. The compromised data included email addresses, user birth dates and passwords stored as a salted MD5 hash.Total Record Count:
742,289Compromised data:
Dates of birth, Email addresses, Homepage URLs, Instant messenger identities, IP addresses, PasswordsAnimoto.com
Leak Details:
In July 2018, the cloud-based video making service Animoto suffered a data breach. The breach exposed 22 million unique email addresses alongside names, dates of birth, country of origin and salted password hashes.Total Record Count:
22,427,909Compromised data:
Dates of birth, Email addresses, Geographic locations, Names, PasswordsArmorGames.com
Leak Details:
In January 2019, the game portal website website Armor Games suffered a data breach. A total of 10.6 million email addresses were impacted by the breach which also exposed usernames, IP addresses, birthdays of administrator accounts and passwords stored as salted SHA-1 hashes.Total Record Count:
10,778,390Compromised data:
Bios, Dates of birth, Email addresses, Genders, Geographic locations, IP addresses, Passwords, UsernamesAruon.com
Leak Details:
In 2015, a database claiming to be from the Korean gaming site Aruon.com was leaked online. The site appears to be offline since 2013.Total Record Count:
146,044Compromised data:
Email addresses, Passwords, Usernames, Real names, Korean Social Security NumbersAshleyMadison.com
Leak Details:
In July 2015, the infidelity website Ashley Madison suffered a serious data breach. The attackers threatened Ashley Madison with the full disclosure of the breach unless the service was shut down. One month later, the database was dumped including more than 30M unique email addresses. This breach has been classed as "sensitive" and is not publicly searchable, although individuals may discover if they've been impacted by registering for notifications. Read about this approach in detail.Total Record Count:
36,380,999Compromised data:
Dates of birth, Email addresses, Ethnicities, Genders, Names, Passwords, Payment histories, Phone numbers, Physical addresses, SAternos.org
Leak Details:
In December 2015, the service for creating and running free Minecraft servers known as Aternos suffered a data breach that impacted 1.4 million subscribers. The data included usernames, email and IP addresses and hashed passwords.Total Record Count:
1,241,044Compromised data:
Email addresses, IP addresses, Passwords, Usernames, Website activityBadoo.com
Leak Details:
In June 2016, a data breach allegedly originating from the social website Badoo was found to be circulating amongst traders. Likely obtained several years earlier, the data contained 112 million unique email addresses with personal data including names, birthdates and passwords stored as MD5 hashes.Total Record Count:
125,357,878Compromised data:
Dates of birth, Email addresses, Genders, Names, Passwords, UsernamesBaihe.com
Leak Details:
This database leak was found being spread on a clearnet 'Hacker’s Forum'. Very little is known about this hack and as such is considered unverified. More information will be added about this leak as it comes available.Total Record Count:
10,708,480Compromised data:
Email address, Password, Username, NamesBearPawshop.com
Leak Details:
In 2017, a database backup from a Korean market site was discovered online.Total Record Count:
96,757Compromised data:
Email addresses, Passwords, UsernamesBinWeevils.com
Leak Details:
In September 2014, the online game Bin Weevils suffered a data breach. net indicated that a more extensive set of personal attributes were impacted (comments there also suggest the data may have come from a later breach). Data matching that pattern was later provided to Have I been pwned by @akshayindia6 and included almost 1.3m unique email addresses, genders, ages and plain text passwords.Total Record Count:
6,968,952Compromised data:
Ages, Email addresses, Genders, IP addresses, Passwords, UsernamesBit.ly
Leak Details:
In May 2014, the link management company Bitly announced they'd suffered a data breach. The breach contained over 9.3 million unique email addresses, usernames and hashed passwords, most using SHA1 with a small number using bcrypt.Total Record Count:
9,313,997Compromised data:
Email addresses, Passwords, UsernamesBit2Visitor.com
Leak Details:
Very little is known about this leak other than it came from Bit2Visitor.com, a now defunct Bitcoin related site.Total Record Count:
21,491Compromised data:
Email addresses, PasswordsBitcoin Sec
Leak Details:
In September 2014, a large dump of nearly 5M usernames and passwords was posted to a Russian Bitcoin forum. ru addresses.Total Record Count:
10,617,937Compromised data:
Email addresses, PasswordsBitcoinTalk.org
Leak Details:
In May 2015, the Bitcoin forum Bitcoin Talk was hacked and over 500k unique email addresses were exposed. The attack led to the exposure of a raft of personal data including usernames, email and IP addresses, genders, birth dates, security questions and MD5 hashes of their answers plus hashes of the passwords themselves.Total Record Count:
77,915Compromised data:
Dates of birth, Email addresses, Genders, IP addresses, Passwords, Security questions and answers, Usernames, Website activityBitcoinTrading.com
Leak Details:
In 2017, a leak appeared from an inactive Bitcoin trading community/forum.Total Record Count:
554Compromised data:
Email addresses, Passwords, Usernames, IP addressesBitLeak.net
Leak Details:
Very little is known about this leak other than it came from BitLeak.net, a now defunct Bitcoin related site.Total Record Count:
1,293Compromised data:
Email addresses, Passwords, Usernames, IP addresses, UsergroupBitsCircle.com
Leak Details:
This database leak was found being spread on a clearnet 'Hacker’s Forum'. Very little is known about this hack and as such is considered unverified. More information will be added about this leak as it comes available.Total Record Count:
19,041Compromised data:
Email addresses, PasswordsBizbilla.com
Leak Details:
In 2017, a leak from Bizbilla.com surfaced on the clear net. Originally with passwords in MD5 format, they were quickly cracked, and a plaintext version began circling.Total Record Count:
174,284Compromised data:
Email addresses, PasswordsBlankMediaGames.com
Leak Details:
In December 2018, the Town of Salem website produced by BlankMediaGames suffered a data breach. The data contained 7.6M unique user email addresses alongside usernames, IP addresses, purchase histories and passwords stored as phpass hashes.Total Record Count:
7,775,056Compromised data:
Browser user agent details, Email addresses, IP addresses, Passwords, Purchases, Usernames, Website activityBobmunsa.co.kr
Leak Details:
This database leak was found being spread on a clearnet 'Hacker’s Forum'. Very little is known about this hack and as such is considered unverified. More information will be added about this leak as it comes available.Total Record Count:
41,123Compromised data:
Email addresses, Passwordsbtc60.net
Leak Details:
This database leak was found being spread on a clearnet 'Hacker’s Forum'. Very little is known about this hack and as such is considered unverified. More information will be added about this leak as it comes available.Total Record Count:
52,179Compromised data:
Email addresses, PasswordsButterFlyLabs.com
Leak Details:
This database leak was found being spread on a clearnet 'Hacker’s Forum'. Very little is known about this hack and as such is considered unverified. More information will be added about this leak as it comes available.Total Record Count:
18,185Compromised data:
Email addresses, PasswordsCannabis.com
Leak Details:
In February 2014, the vBulletin forum for the Marijuana site cannabis.com was breached and leaked publicly.Total Record Count:
227,740Compromised data:
Dates of birth, Email addresses, Geographic locations, Historical passwords, Instant messenger identities, IP addresses, PassworCanva.com
Leak Details:
In May 2019, the graphic design tool website Canva suffered a data breach that impacted 137 million subscribers. The exposed data included email addresses, usernames, names, cities of residence and passwords stored as bcrypt hashes for users not using social logins.Total Record Count:
137,490,076Compromised data:
Email addresses, Geographic locations, Names, Passwords, UsernamesCashCrate.com
Leak Details:
In June 2017, news broke that CashCrate had suffered a data breach exposing 6.8 million records. The breach of the cash-for-surveys site dated back to November 2016 and exposed names, physical addresses, email addresses and passwords stored in plain text for older accounts along with weak MD5 hashes for newer ones.Total Record Count:
6,869,019Compromised data:
Email addresses, Names, Passwords, Physical addressesCDProjektRed.com
Leak Details:
In March 2016, Polish game developer CD Projekt RED suffered a data breach. The hack of their forum led to the exposure of almost 1.9 million accounts along with usernames, email addresses and salted SHA1 passwords.Total Record Count:
1,871,467Compromised data:
Email addresses, Passwords, UsernamesCfire.mail.ru
Leak Details:
In August 2016, the Russian gaming forum known as Cross Fire (or cfire.mail.ru) was hacked along with a number of other forums on the Russian mail provider, mail.ru. The vBulletin forum contained 12.8 million accounts including usernames, email addresses and passwords stored as salted MD5 hashes.Total Record Count:
12,881,731Compromised data:
Email addresses, Passwords, UsernamesChanti.se
Leak Details:
This database leak was found being spread on a clearnet 'Hacker’s Forum'. Very little is known about this hack and as such is considered unverified. More information will be added about this leak as it comes available.Total Record Count:
93,113Compromised data:
Email addresses, PasswordsCheat-master.net
Leak Details:
This database leak was found being spread on a clearnet 'Hacker’s Forum'. Very little is known about this hack and as such is considered unverified. More information will be added about this leak as it comes available.Total Record Count:
2,027,072Compromised data:
Email addresses, PasswordsChegg.com
Leak Details:
In April 2018, the textbook rental service Chegg suffered a data breach that impacted 40 million subscribers. The exposed data included email addresses, usernames, names and passwords stored as unsalted MD5 hashes.Total Record Count:
39,795,446Compromised data:
Email address, Password, Username, NamesClassicKorea.co.kr
Leak Details:
This database leak was found being spread on a clearnet 'Hacker’s Forum'. Very little is known about this hack and as such is considered unverified. More information will be added about this leak as it comes available.Total Record Count:
472,438Compromised data:
Email addresses, Passwords, UsernamesClixSense.com
Leak Details:
In September 2016, the paid-to-click site ClixSense suffered a data breach which exposed 2.4 million subscriber identities. The breached data was then posted online by the attackers who claimed it was a subset of a larger data breach totalling 6.6 million records. The leaked data was extensive and included names, physical, email and IP addresses, genders and birth dates, account balances and passwords stored as plain text.Total Record Count:
2,222,508Compromised data:
Account balances, Dates of birth, Email addresses, Genders, IP addresses, Names, Passwords, Payment histories, Payment methods,CompDB
Leak Details:
This is a compliation of numerous untitled email:password leaks including giant lists like Colletion #1-#5, Breach Comp, Exploit.In, Anti Public, etc... Note: This list does not include data from many of the most popular free email services. If your org uses a free email service, contact us for a more detailed search.Total Record Count:
3,647,926,121Compromised data:
Email addresses, PasswordsCouponMom.com
Leak Details:
In 2014, a file allegedly containing data hacked from Coupon Mom was created and included 11 million email addresses and plain text passwords. On further investigation, the file was also found to contain data indicating it had been sourced from Armor Games.Total Record Count:
11,032,684Compromised data:
Email addresses, PasswordsCSDN.net
Leak Details:
One of the biggest programming communities in China, leaked 6M user data. A text file with 6M CSDN user info: user name, password, emails, all in clear text, was found on the internet.Total Record Count:
6,427,814Compromised data:
Email addresses, Passwords, UsernamesDailyMotion
Leak Details:
In October 2016, the video sharing platform Dailymotion suffered a data breach. The attack led to the exposure of more than 85 million user accounts and included email addresses, usernames and bcrypt hashes of passwords.Total Record Count:
85,198,342Compromised data:
Email addresses, Passwords, UsernamesDaniweb.com
Leak Details:
In late 2015, the technology and social site DaniWeb suffered a data breach. The attack resulted in the disclosure of 1.1 million accounts including email and IP addresses which were also accompanied by salted MD5 hashes of passwords. However, DaniWeb have advised that "the breached password hashes and salts are incorrect" and that they have since switched to new infrastructure and software.Total Record Count:
1,130,749Compromised data:
Email addresses, IP addresses, Passwordsddo.com
Leak Details:
In April 2013, the interactive video game Dungeons & Dragons Online suffered a data breach that exposed almost 1.6M players' accounts. The data was being actively traded on underground forums and included email addresses, birth dates and password hashes.Total Record Count:
1,645,214Compromised data:
Dates of birth, Email addresses, IP addresses, Passwords, Usernames, Website activityDesura.com
Leak Details:
In late 2011, a series of data breaches in China affected up to 100 million users, including the social site known as Desura. Whilst there is evidence that the data is legitimate, due to the difficulty of emphatically verifying the Chinese breach it has been flagged as "unverified". The data in the breach contains email addresses and cleartext passwordsTotal Record Count:
1,146,788Compromised data:
Email addresses, PasswordsDFB.de
Leak Details:
This database leak was found being spread on a clearnet 'Hacker’s Forum'. Very little is known about this hack and as such is considered unverified. More information will be added about this leak as it comes available.Total Record Count:
2,946,178Compromised data:
Email addresses, PasswordsDiet.com
Leak Details:
In August 2014, the diet and nutrition website diet.com suffered a data breach resulting in the exposure of 1.4 million unique user records dating back as far as 2004. The data contained email and IP addresses, usernames, plain text passwords and dietary information about the site members including eating habits, BMI and birth date. The site was previously reported as compromised on the Vigilante.pw breached database directory.Total Record Count:
1,305,298Compromised data:
Dates of birth, Eating habits, Email addresses, IP addresses, Names, Passwords, Physical attributes, UsernamesDisqus.com
Leak Details:
In October 2017, the blog commenting service Disqus announced they'd suffered a data breach. The breach dated back to July 2012 but wasn't identified until years later when the data finally surfaced. The breach contained over 17.5 million unique email addresses and usernames. Users who created logins on Disqus had salted SHA1 hashes of passwords whilst users who logged in via social providers only had references to those accounts.Total Record Count:
18,256,322Compromised data:
Email addresses, Passwords, UsernamesDLH.net
Leak Details:
In July 2016, the gaming news site DLH.net suffered a data breach which exposed 3.3M subscriber identities. Along with the keys used to redeem and activate games on the Steam platform, the breach also resulted in the exposure of email addresses, birth dates and salted MD5 password hashes. The data was donated to Have I been pwned by data breach monitoring service Vigilante.pw.Total Record Count:
3,231,237Compromised data:
Dates of birth, Email addresses, Names, Passwords, Usernames, Website activityDoDoNew.com
Leak Details:
In late 2011, data was allegedly obtained from the Chinese website known as Dodonew.com and contained 8.7M accounts. The data in the breach contains email addresses and user names.Total Record Count:
16,044,055Compromised data:
Email addresses, UsernamesDragonNest.com
Leak Details:
This database leak was found being spread on a clearnet 'Hacker’s Forum'. Very little is known about this hack and as such is considered unverified. More information will be added about this leak as it comes available.Total Record Count:
3,143,905Compromised data:
Email addresses, Passwords, Usernames, Real names, IP addresses, LocationDropbox
Leak Details:
In mid-2012, Dropbox suffered a data breach which exposed the stored credentials of tens of millions of their customers. In August 2016, they forced password resets for customers they believed may be at risk. A large volume of data totalling over 68 million records was subsequently traded online and included email addresses and salted hashes of passwords (half of them SHA1, half of them bcrypt).Total Record Count:
68,679,913Compromised data:
Email addresses, PasswordsDubsmash.com
Leak Details:
In December 2018, the video messaging service Dubsmash suffered a data breach. The incident exposed 162 million unique email addresses alongside usernames and PBKDF2 password hashes. In 2019, the data appeared listed for sale on a dark web marketplace (along with several other large breaches) and subsequently began circulating more broadly.Total Record Count:
161,540,830Compromised data:
Email addresses, Geographic locations, Names, Passwords, Phone numbers, Spoken languages, UsernamesEdmodo.com
Leak Details:
In May 2017, the education platform Edmodo was hacked resulting in the exposure of 77 million records comprised of over 43 million unique customer email addresses. The data was consequently published to a popular hacking forum and made freely available. The records in the breach included usernames, email addresses and bcrypt hashes of passwords.Total Record Count:
76,025,976Compromised data:
Email addresses, Passwords, UsernamesElle.co.kr
Leak Details:
In 2018, a leak from the Korean fashion site Elle.co.kr was discovered and contained a lot of personally identifiable information.Total Record Count:
187,393Compromised data:
Email addresses, Passwords, Usernames, Real names, Korean Social Security Numbers, AddressesEloBuddy.com
Leak Details:
This database leak was found being spread on a clearnet 'Hacker’s Forum'. Very little is known about this hack and as such is considered unverified. More information will be added about this leak as it comes available.Total Record Count:
177,355Compromised data:
Email Addresses, Passwrods, IP Addresses, UsernamesEmail2Name
Leak Details:
This database leak was found being spread on a clearnet 'Hacker’s Forum'. Very little is known about this hack and as such is considered unverified. More information will be added about this leak as it comes available.Total Record Count:
64,474,140Compromised data:
Email, Real namesEuroNics.it
Leak Details:
In early 2018, a large dataset consisting of over 1400 individual databases was found online. This leak contained a file named lavoraconnoi.euronics.it.txt consisting of email addresses and a combination of hashed and plaintext passwords. While the validity of this breach cannot be confirmed, many of the accounts had not been seen in previous data breaches.Total Record Count:
438,585Compromised data:
Email addresses, PasswordsEvony
Leak Details:
In June 2016, the online multiplayer game Evony was hacked and over 29 million unique accounts were exposed. The attack led to the exposure of usernames, email and IP addresses and MD5 hashes of passwords (without salt).Total Record Count:
58,238,033Compromised data:
Email addresses, IP addresses, Passwords, UsernamesEyeem.com
Leak Details:
In February 2018, photography website EyeEm suffered a data breach. The breach was identified among a collection of other large incidents and exposed almost 20M unique email addresses, names, usernames, bios and password hashes.Total Record Count:
17,680,303Compromised data:
Bios, Email addresses, Names, Passwords, UsernamesFashionfantasygame.com
Leak Details:
In late 2016, the fashion gaming website Fashion Fantasy Game suffered a data breach. The incident exposed 2.3 million unique user accounts and corresponding MD5 password hashes with no salt. The data was contributed to Have I been pwned courtesy of rip@creep.im.Total Record Count:
2,498,594Compromised data:
Email addresses, PasswordsFashionPlus.co.kr
Leak Details:
This database leak was found being spread on a clearnet 'Hacker’s Forum'. Very little is known about this hack and as such is considered unverified. More information will be added about this leak as it comes available.Total Record Count:
661,694Compromised data:
Email addresses, Passwords, Usernames, Real names, Korean Social Security Numbers, Addresses, Phone NumbersFlashFlashRevolution.com
Leak Details:
In February 2016, the music-based rhythm game known as Flash Flash Revolution was hacked and 1.8M accounts were exposed. Along with email and IP addresses, the vBulletin forum also exposed salted MD5 password hashes.Total Record Count:
2,005,436Compromised data:
Email addresses, Passwords, UsernamesFling.com
Leak Details:
In 2011, the self-proclaimed "World's Best Adult Social Network" website known as Fling was hacked and more than 40 million accounts obtained by the attacker. The breached data included highly sensitive personal attributes such as sexual orientation and sexual interests as well as email addresses and passwords stored in plain text.Total Record Count:
40,768,982Compromised data:
Dates of birth, Email addresses, Genders, Geographic locations, IP addresses, Passwords, Phone numbers, Sexual fetishes, SexualForbes.com
Leak Details:
In February 2014, the Forbes website succumbed to an attack that leaked over 1 million user accounts. The attack was attributed to the Syrian Electronic Army, allegedly as retribution for a perceived "Hate of Syria". The attack not only leaked user credentials, but also resulted in the posting of fake news stories to forbes.com.Total Record Count:
1,071,954Compromised data:
Email addresses, Passwords, User website URLs, UsernamesForex-Investor.net
Leak Details:
This database leak was found being spread on a clearnet 'Hacker’s Forum'. Very little is known about this hack and as such is considered unverified. More information will be added about this leak as it comes available.Total Record Count:
42,743Compromised data:
Email addresses, PasswordsFotoBoom.com
Leak Details:
In early 2018, a large dataset consisting of over 1400 individual databases was found online. This leak contained a file named www.fotoboom.com.txt consisting of email addresses and a combination of hashed and plaintext passwords. While the validity of this breach cannot be confirmed, many of the accounts had not been seen in previous data breaches.Total Record Count:
86,369Compromised data:
Email addresses, PasswordsFrancoBordo.com
Leak Details:
This database leak was found being spread on a clearnet 'Hacker’s Forum'. Very little is known about this hack and as such is considered unverified. More information will be added about this leak as it comes available.Total Record Count:
7,145Compromised data:
Email addresses, PasswordsFutureShop.co.uk
Leak Details:
This database leak was found being spread on a clearnet 'Hacker’s Forum'. Very little is known about this hack and as such is considered unverified. More information will be added about this leak as it comes available.Total Record Count:
13,897Compromised data:
Email addresses, PasswordsGaadi.com
Leak Details:
In May 2015, the Indian motoring website known as Gaadi had 4.3 million records exposed in a data breach. The data contained usernames, email and IP addresses, genders, the city of users as well as passwords stored in both plain text and as MD5 hashes.Total Record Count:
4,379,949Compromised data:
Email addresses, Genders, Geographic locations, IP addresses, Names, Passwords, Phone numbers, UsernamesGame-Tuts.com
Leak Details:
Likely in early 2015, the video game website GameTuts suffered a data breach and over 2 million user accounts were exposed. The site later shut down in July 2016 but was identified as having been hosted on a vBulletin forum. The exposed data included usernames, email and IP addresses and salted MD5 hashes.Total Record Count:
2,243,788Compromised data:
Email addresses, IP addresses, Passwords, UsernamesGamerzplanet.net
Leak Details:
In approximately October 2015, the online gaming forum known as Gamerzplanet was hacked and more than 1.2M accounts were exposed. The vBulletin forum included IP addresses and passwords stored as salted hashes using a weak implementation enabling many to be rapidly cracked.Total Record Count:
1,215,113Compromised data:
Email addresses, IP addresses, Passwords, UsernamesGamevn.com
Leak Details:
This database leak was found being spread on a clearnet 'Hacker’s Forum'. Very little is known about this hack and as such is considered unverified. More information will be added about this leak as it comes available.Total Record Count:
1,372,866Compromised data:
Email addresses, IP addresses, Passwords, UsernamesGamigo.com
Leak Details:
In March 2012, the German online game publisher Gamigo was hacked and more than 8 million accounts publicly leaked. The breach included email addresses and passwords stored as weak MD5 hashes with no salt.Total Record Count:
8,222,941Compromised data:
Email addresses, PasswordsGfan.com
Leak Details:
In October 2016, data surfaced that was allegedly obtained from the Chinese website known as GFAN and contained 22.5M accounts.Total Record Count:
22,623,724Compromised data:
Email addresses, IP addresses, Passwords, UsernamesGigasize.com
Leak Details:
This database leak was found being spread on a clearnet 'Hacker’s Forum'. Very little is known about this hack and as such is considered unverified. More information will be added about this leak as it comes available.Total Record Count:
1,900,660Compromised data:
Email addresses, PasswordsGomo.com
Leak Details:
This database leak was found being spread on a clearnet 'Hacker’s Forum'. Very little is known about this hack and as such is considered unverified. More information will be added about this leak as it comes available.Total Record Count:
51,426,767Compromised data:
Email addresses, Passwords, Usernames, Phone numbersGPotato.com
Leak Details:
In July 2007, the multiplayer game portal known as gPotato (link to archive of the site at that time) suffered a data breach and over 2 million user accounts were exposed. The site later merged into the Webzen portal where the original accounts still exist today. The exposed data included usernames, email and IP addresses, MD5 hashes and personal attributes such as gender, birth date, physical address and security questions and answers stored in plain text.Total Record Count:
2,146,901Compromised data:
Dates of birth, Email addresses, Genders, IP addresses, Names, Passwords, Physical addresses, Security questions and answers, UsGroupon.co.id
Leak Details:
This database leak was found being spread on a clearnet 'Hacker’s Forum'. Very little is known about this hack and as such is considered unverified. More information will be added about this leak as it comes available.Total Record Count:
766,599Compromised data:
Email addresses, PasswordsHabbo.st
Leak Details:
This database leak was found being spread on a clearnet 'Hacker’s Forum'. Very little is known about this hack and as such is considered unverified. More information will be added about this leak as it comes available.Total Record Count:
270,963Compromised data:
Email addresses, PasswordsHacker.co.kr
Leak Details:
In early 2010, the popular computer hardware market Hacker.co.kr was breached. Its not known who was the responsible party that leaked the stolen database. Due to its age and the fact that the site no longer exists, its not possible to verify the data.Total Record Count:
1,396,793Compromised data:
Email addresses, PasswordsHautelook.com
Leak Details:
In mid-2018, the fashion shopping site HauteLook was among a raft of sites that were breached and their data then sold in early-2019. The data included over 28 million unique email addresses alongside names, genders, dates of birth and passwords stored as bcrypt hashes.Total Record Count:
6,511,612Compromised data:
Email addresses, PasswordsHiAPK.com
Leak Details:
In approximately 2014, it's alleged that the Chinese Android store known as HIAPK suffered a data breach that impacted 13.8 million unique subscribers. The data in the breach contains usernames, email addresses and salted MD5 password hashesTotal Record Count:
14,833,436Compromised data:
Email addresses, Passwords, UsernamesHoudao.com
Leak Details:
This database leak was found being spread on a clearnet 'Hacker’s Forum'. Very little is known about this hack and as such is considered unverified. More information will be added about this leak as it comes available.Total Record Count:
28,604,984Compromised data:
Email addresses, PasswordsHSX.com
Leak Details:
This database leak was found being spread on a clearnet 'Hacker’s Forum'. Very little is known about this hack and as such is considered unverified. More information will be added about this leak as it comes available.Total Record Count:
238,197Compromised data:
Email addresses, Passwordsht.co.kr
Leak Details:
This database leak was found being spread on a clearnet 'Hacker’s Forum'. Very little is known about this hack and as such is considered unverified. More information will be added about this leak as it comes available.Total Record Count:
526,584Compromised data:
Email addresses, Passwords, Usernames, Real names, Birthdates, Addressesi-Dressup.com
Leak Details:
In June 2016, the teen social site known as i-Dressup was hacked and over 2 million user accounts were exposed. At the time the hack was reported, the i-Dressup operators were not contactable and the underlying SQL injection flaw remained open, allegedly exposing a total of 5.5 million accounts. The breach included email addresses and passwords stored in plain text.Total Record Count:
2,205,863Compromised data:
Email addresses, Passwordsicross.co.kr
Leak Details:
In early 2018, a large dataset consisting of over 1400 individual databases was found online. This leak contained a file named lifetip.icross.co.kr.txt consisting of email addresses and a combination of hashed and plaintext passwords. While the validity of this breach cannot be confirmed, many of the accounts had not been seen in previous data breaches.Total Record Count:
1,146,133Compromised data:
Email addresses, PasswordsiMesh.com
Leak Details:
In September 2013, the media and file sharing client known as iMesh was hacked and approximately 50M accounts were exposed. The data was later put up for sale on a dark market website in mid-2016 and included email and IP addresses, usernames and salted MD5 hashes.Total Record Count:
51,310,675Compromised data:
Email addresses, IP addresses, Passwords, UsernamesImgur.com
Leak Details:
In September 2013, the online image sharing community imgur suffered a data breach. A selection of the data containing 1.7 million email addresses and passwords surfaced more than 4 years later in November 2017. Although imgur stored passwords as SHA-256 hashes, the data in the breach contained plain text passwords suggesting that many of the original hashes had been cracked. imgur advises that they rolled over to bcrypt hashes in 2016.Total Record Count:
1,752,885Compromised data:
Email addresses, PasswordsInterPals.net
Leak Details:
In late 2015, the online penpal site InterPals had their website hacked and 3.4 million accounts exposed. The compromised data included email addresses, geographical locations, birthdates and salted hashes of passwords.Total Record Count:
3,450,214Compromised data:
Dates of birth, Email addresses, Geographic locations, Names, Passwords, UsernamesJapanCombo
Leak Details:
This database leak was found being spread on a clearnet 'Hacker’s Forum'. Very little is known about this hack and as such is considered unverified. More information will be added about this leak as it comes available.Total Record Count:
14,797,059Compromised data:
Email addresses, PasswordsJobStreet.com
Leak Details:
In October 2017, the Malaysian website lowyat.net ran a story on a massive set of breached data affecting millions of Malaysians after someone posted it for sale on their forums. The data spanned multiple separate breaches including the JobStreet jobs website which contained almost 4 million unique email addresses. The dates in the breach indicate the incident occurred in March 2012. The data later appeared freely downloadable on a Tor hidden service and contained extensive information on job seekers includTotal Record Count:
3,880,985Compromised data:
Dates of birth, Email addresses, Genders, Geographic locations, Government issued IDs, Marital statuses, Names, Nationalities, Pkickstarter.com
Leak Details:
In February 2014, the crowdfunding platform Kickstarter announced they'd suffered a data breach. The breach contained almost 5.2 million unique email addresses, usernames and salted SHA1 hashes of passwords.Total Record Count:
5,175,100Compromised data:
Email addresses, PasswordsKlerk.ru
Leak Details:
This database leak was found being spread on a clearnet 'Hacker’s Forum'. Very little is known about this hack and as such is considered unverified. More information will be added about this leak as it comes available.Total Record Count:
151,204Compromised data:
Email addresses, PasswordsLast.fm
Leak Details:
In March 2012, the music website Last.fm was hacked and 43 million user accounts were exposed. fm knew of an incident back in 2012, the scale of the hack was not known until the data was released publicly in September 2016. The breach included 37 million unique email addresses, usernames and passwords stored as unsalted MD5 hashes.Total Record Count:
43,568,954Compromised data:
Email addresses, Passwords, Usernames, Website activityLBSG
Leak Details:
In January 2016, the Minecraft community known as Lifeboat was hacked and more than 7 million accounts leaked. Lifeboat knew of the incident for three months before the breach was made public but elected not to advise customers. The leaked data included usernames, email addresses and passwords stored as straight MD5 hashes.Total Record Count:
11,869,755Compromised data:
Email addresses, Passwords, UsernamesLeet.cc
Leak Details:
In August 2016, the service for creating and running Pocket Minecraft edition servers known as Leet was reported as having suffered a data breach that impacted 6 million subscribers. The incident reported by Softpedia had allegedly taken place earlier in the year contained only 2 million subscribers. The data included usernames, email and IP addresses and SHA512 hashes.Total Record Count:
6,083,442Compromised data:
Email addresses, IP addresses, Passwords, Usernames, Website activityLinkedin
Leak Details:
In May 2016, LinkedIn had 164 million email addresses and passwords exposed. Originally hacked in 2012, the data remained out of sight until being offered for sale on a dark market site 4 years later. The passwords in the breach were stored as SHA1 hashes without salt, the vast majority of which were quickly cracked in the days following the release of the data.Total Record Count:
160,132,580Compromised data:
Email addresses, PasswordsLotro.com
Leak Details:
In August 2013, the interactive video game Lord of the Rings Online suffered a data breach that exposed over 1.1M players' accounts. The data was being actively traded on underground forums and included email addresses, birth dates and password hashes.Total Record Count:
1,353,686Compromised data:
Dates of birth, Email addresses, IP addresses, Passwords, Usernames, Website activityLuminPDF.com
Leak Details:
In April 2019, the PDF management service Lumin PDF suffered a data breach. The breach wasn't publicly disclosed until September when 15.5M records of user data appeared for download on a popular hacking forum. The data had been left publicly exposed in a MongoDB instance after which Lumin PDF was allegedly been "contacted multiple times, but ignored all the queries". The exposed data included names, email addresses, genders, spoken language and either a bcrypt password hash or Google auth token.Total Record Count:
15,458,399Compromised data:
Email addresses, Genders, Spoken language, Bcrypt password or Google auth tokenMagazineDee.com
Leak Details:
This database leak was found being spread on a clearnet 'Hacker’s Forum'. Very little is known about this hack and as such is considered unverified. More information will be added about this leak as it comes available.Total Record Count:
107,718Compromised data:
Email addresses, PasswordsMangaFox.me
Leak Details:
In approximately July 2016, the manga website known as mangafox.me suffered a data breach. The vBulletin based forum exposed 1.3 million accounts including usernames, email and IP addresses, dates of birth and salted MD5 password hashes.Total Record Count:
1,311,320Compromised data:
Dates of birth, Email addresses, IP addresses, Passwords, UsernamesMate1.com
Leak Details:
In February 2016, the dating site mate1.com suffered a huge data breach resulting in the disclosure of over 27 million subscribers' information. The data included deeply personal information about their private lives including drug and alcohol habits, incomes levels and sexual fetishes as well as passwords stored in plain text.Total Record Count:
27,402,292Compromised data:
Astrological signs, Dates of birth, Drinking habits, Drug habits, Education levels, Email addresses, Ethnicities, Fitness levelsMindaCorporation.com
Leak Details:
This database leak was found being spread on a clearnet 'Hacker’s Forum'. Very little is known about this hack and as such is considered unverified. More information will be added about this leak as it comes available.Total Record Count:
47,843Compromised data:
Email addresses, PasswordsMisterTao.com
Leak Details:
This database leak was found being spread on a clearnet 'Hacker’s Forum'. Very little is known about this hack and as such is considered unverified. More information will be added about this leak as it comes available.Total Record Count:
158,204Compromised data:
Email addresses, PasswordsMMGP.ru
Leak Details:
This database leak was found being spread on a clearnet 'Hacker’s Forum'. Very little is known about this hack and as such is considered unverified. More information will be added about this leak as it comes available.Total Record Count:
108,540Compromised data:
Email addresses, PasswordsModbSolutions.com
Leak Details:
In October 2016, a large Mongo DB file containing tens of millions of accounts was shared publicly on Twitter (the file has since been removed). The database contained over 58M unique email addresses along with IP addresses, names, home addresses, genders, job titles, dates of birth and phone numbers. The data was subsequently attributed to "Modern Business Solutions", a company that provides data storage and database hosting solutions. They've yet to acknowledge the incident or explain how they came to beTotal Record Count:
58,840,276Compromised data:
Dates of birth, Email addresses, Genders, IP addresses, Job titles, Names, Phone numbers, Physical addressesMoneyBookers.com
Leak Details:
Sometime in 2009, the e-wallet service known as Money Bookers suffered a data breach which exposed almost 4.5M customers. Now called Skrill, the breach was not discovered until October 2015 and included names, email addresses, home addresses and IP addresses.Total Record Count:
1,799,385Compromised data:
Dates of birth, Email addresses, IP addresses, Names, Phone numbers, Physical addressesMop.com
Leak Details:
In late 2011, a series of data breaches in China affected up to 100 million users, including the social site known as Mop. Whilst there is evidence that the data is legitimate, due to the difficulty of emphatically verifying the Chinese breach it has been flagged as "unverified". The data in the breach contains email addresses and cleartext passwordsTotal Record Count:
2,639,649Compromised data:
Email addresses, PasswordsMorele.net
Leak Details:
In October 2018, the Polish e-commerce website Morele.net suffered a data breach. The incident exposed almost 2.5 million unique email addresses alongside phone numbers, names and passwords stored as md5crypt hashes.Total Record Count:
2,471,156Compromised data:
Email addresses, Names, Passwords, Phone numbersMPGH
Leak Details:
In October 2015, the multiplayer game hacking website MPGH was hacked and 3.1 million user accounts disclosed. The vBulletin forum breach contained usernames, email addresses, IP addresses and salted hashes of passwords.Total Record Count:
3,119,276Compromised data:
Email addresses, IP addresses, Passwords, UsernamesMtGox.com
Leak Details:
This database leak was found being spread on a clearnet 'Hacker’s Forum'. Very little is known about this hack and as such is considered unverified. More information will be added about this leak as it comes available.Total Record Count:
12,022Compromised data:
Email addresses, PasswordsMuzhiwan.com
Leak Details:
This database leak was found being spread on a clearnet 'Hacker’s Forum'. Very little is known about this hack and as such is considered unverified. More information will be added about this leak as it comes available.Total Record Count:
4,494,560Compromised data:
Email addresses, PasswordsMyFitnessPal.com
Leak Details:
In February 2018, the diet and exercise service MyFitnessPal suffered a data breach. The incident exposed 144 million unique email addresses alongside usernames, IP addresses and passwords stored as SHA-1 and bcrypt hashes (the former for earlier accounts, the latter for newer accounts). In 2019, the data appeared listed for sale on a dark web marketplace (along with several other large breaches) and subsequently began circulating more broadly.Total Record Count:
143,440,534Compromised data:
Email addresses, IP addresses, Passwords, UsernamesMyheritage.com
Leak Details:
In October 2017, the genealogy website MyHeritage suffered a data breach. The incident was reported 7 months later after a security researcher discovered the data and contacted MyHeritage. In total, more than 92M customer records were exposed and included email addresses and salted SHA-1 password hashes. In 2019, the data appeared listed for sale on a dark web marketplace (along with several other large breaches) and subsequently began circulating more broadly.Total Record Count:
78,716,040Compromised data:
Email addresses, PasswordsMySpace
Leak Details:
In approximately 2008, MySpace suffered a data breach that exposed almost 360 million accounts. In May 2016 the data was offered up for sale on the "Real Deal" dark market website and included email addresses, usernames and SHA1 hashes of the first 10 characters of the password converted to lowercase and stored without a salt. The exact breach date is unknown, but analysis of the data suggests it was 8 years before being made public.Total Record Count:
359,158,679Compromised data:
Email addresses, Passwords, UsernamesNeopets.com
Leak Details:
In May 2016, a set of breached data originating from the virtual pet website "Neopets" was found being traded online. Allegedly hacked "several years earlier", the data contains sensitive personal information including birthdates, genders and names as well as almost 27 million unique email addresses. Passwords were stored in plain text and IP addresses were also present in the breach.Total Record Count:
68,520,846Compromised data:
Dates of birth, Email addresses, Genders, Geographic locations, IP addresses, Names, Passwords, UsernamesNetEase
Leak Details:
In October 2015, the Chinese site known as NetEase (located at 163.com) was reported as having suffered a data breach that impacted hundreds of millions of subscribers. The data in the breach contains email addresses and plain text passwords.Total Record Count:
275,148,302Compromised data:
Email addresses, PasswordsNeteller.com
Leak Details:
In May 2010, the e-wallet service known as Neteller suffered a data breach which exposed over 3.6M customers. The breach was not discovered until October 2015 and included names, email addresses, home addresses and account balances.Total Record Count:
2,000,085Compromised data:
Account balances, Dates of birth, Email addresses, Genders, IP addresses, Names, Phone numbers, Physical addresses, Security queNexusmods.com
Leak Details:
In December 2015, the game modding site Nexus Mods released a statement notifying users that they had been hacked. They subsequently dated the hack as having occurred in July 2013 although there is evidence to suggest the data was being traded months in advance of that. The breach contained usernames, email addresses and passwords stored as a salted hashes.Total Record Count:
5,920,068Compromised data:
Email addresses, Passwords, UsernamesNihonomaru.net
Leak Details:
In late 2015, the anime community known as Nihonomaru had their vBulletin forum hacked and 1.7 million accounts exposed. The compromised data included email and IP addresses, usernames and salted hashes of passwords.Total Record Count:
1,698,077Compromised data:
Email addresses, IP addresses, Passwords, UsernamesNulled.Io
Leak Details:
In May 2016, the cracking community forum known as Nulled was hacked and 599k user accounts were leaked publicly. The compromised data included email and IP addresses, weak salted MD5 password hashes and hundreds of thousands of private messages between members.Total Record Count:
599,067Compromised data:
Dates of birth, Email addresses, IP addresses, Passwords, Private messages, Usernames, Website activityPconline.com.cn
Leak Details:
This database leak was found being spread on a clearnet 'Hacker’s Forum'. Very little is known about this hack and as such is considered unverified. More information will be added about this leak as it comes available.Total Record Count:
5,385,949Compromised data:
Email address, Password, UsernamePoshmark.com
Leak Details:
In mid-2018, social commerce marketplace Poshmark suffered a data breach that exposed 36M user accounts. The compromised data included email addresses, names, usernames, genders, locations and passwords stored as bcrypt hashes.Total Record Count:
13,904,069Compromised data:
Email addresses, Genders, Geographic locations, Names, Passwords, UsernamesPromo.com
Leak Details:
In July 2020, the self-proclaimed "World's #1 Marketing Video Maker" Promo suffered a data breach which was then shared extensively on a hacking forum. The incident exposed 22 million records containing almost 15 million unique email addresses alongside IP addresses, genders, names and salted SHA-256 password hashes.Total Record Count:
2,643,854Compromised data:
Email addresses, Genders, IP addresses, Names, PasswordsPubPit.com
Leak Details:
This database leak was found being spread on a clearnet 'Hacker’s Forum'. Very little is known about this hack and as such is considered unverified. More information will be added about this leak as it comes available.Total Record Count:
51,457Compromised data:
Email addresses, PasswordsQuantShare.com
Leak Details:
This database leak was found being spread on a clearnet 'Hacker’s Forum'. Very little is known about this hack and as such is considered unverified. More information will be added about this leak as it comes available.Total Record Count:
23,032Compromised data:
Email addresses, PasswordsR2games.com
Leak Details:
In late 2015, the gaming website R2Games was hacked and more than 2.1M personal records disclosed. The vBulletin forum included IP addresses and passwords stored as salted hashes using a weak implementation enabling many to be rapidly cracked. A further 11M accounts were added to "Have I been pwned" in March 2016 and another 9M in July 2016 bringing the total to over 22M.Total Record Count:
22,662,608Compromised data:
Email addresses, IP addresses, Passwords, UsernamesReadnovel.com
Leak Details:
This database leak was found being spread on a clearnet 'Hacker’s Forum'. Very little is known about this hack and as such is considered unverified. More information will be added about this leak as it comes available.Total Record Count:
17,915,746Compromised data:
Email address, Password, UsernameRenren.com
Leak Details:
In December 2011 a database breach affecting renren.com leaked 4.7 million user records including email addresses and plaintext passwords.Total Record Count:
4,555,094Compromised data:
Email addresses, PasswordsShadi.com
Leak Details:
In 2016 Shadi.com's Database was breached containing 2 million of their users information containing private information about their sexual lives or fantasies along with their addresses, names and email/passwords.Total Record Count:
2,024,280Compromised data:
Email addresses, Passwords, Religion, Addresses, Gender, Phone Numbers, Complexion, Children, Wedding Plan, Family Status, MaritSharethis.com
Leak Details:
In July 2018, the social bookmarking and sharing service ShareThis suffered a data breach. The incident exposed 41 million unique email addresses alongside names and in some cases, dates of birth and password hashes. In 2019, the data appeared listed for sale on a dark web marketplace (along with several other large breaches) and subsequently began circulating more broadly.Total Record Count:
40,991,747Compromised data:
Dates of birth, Email addresses, Names, PasswordsShein.com
Leak Details:
In June 2018, online fashion retailer SHEIN suffered a data breach. The company discovered the breach 2 months later in August then disclosed the incident another month after that. A total of 39 million unique email addresses were found in the breach alongside MD5 password hashes.Total Record Count:
28,063,039Compromised data:
Email addresses, PasswordsSmartHem.se
Leak Details:
This database leak was found being spread on a clearnet 'Hacker’s Forum'. Very little is known about this hack and as such is considered unverified. More information will be added about this leak as it comes available.Total Record Count:
53,985Compromised data:
Email addresses, PasswordsStockX.com
Leak Details:
In July 2019, the fashion and sneaker trading platform StockX suffered a data breach which was subsequently sold via a dark webmarketplace. The exposed data included 6.8 million unique email addresses, names, physical addresses, purchases and passwords stored as salted MD5 hashes.Total Record Count:
6,846,482Compromised data:
Email addresses, Names, Passwords, Physical addresses, Purchases, UsernamesStratfor.com
Leak Details:
In December 2011, "Anonymous" attacked the global intelligence company known as "Stratfor" and consequently disclosed a veritable treasure trove of data including hundreds of gigabytes of email and tens of thousands of credit card details which were promptly used by the attackers to make charitable donations (among other uses). The breach also included 860,000 user accounts complete with email address, time zone, some internal system data and MD5 hashed passwords with no salt.Total Record Count:
858,345Compromised data:
Credit cards, Email addresses, Names, Passwords, Phone numbers, Physical addresses, UsernamesSubaGames.com
Leak Details:
In September 2016, SubaGames.com was hacked and 3,494,889 Users' account data was breached. The passwords in this database are in salted(hex) vB hashes.Total Record Count:
3,478,212Compromised data:
Email addresses, PasswordsTabakPfeife24.de
Leak Details:
This database leak was found being spread on a clearnet 'Hacker’s Forum'. Very little is known about this hack and as such is considered unverified. More information will be added about this leak as it comes available.Total Record Count:
43,582Compromised data:
Email addresses, PasswordsTaobao.com
Leak Details:
In approximately 2012, it's alleged that the Chinese shopping site known as Taobao suffered a data breach that impacted over 21 million subscribers. The data in the breach contains email addresses and plain text passwords.Total Record Count:
14,785,530Compromised data:
Email addresses, Passwordstaringa.net
Leak Details:
In September 2017, news broke that Taringa had suffered a data breach exposing 28 million records. Known as "The Latin American Reddit", Taringa's breach disclosure notice indicated the incident dated back to August that year. The exposed data included usernames, email addresses and weak MD5 hashes of passwords.Total Record Count:
28,224,558Compromised data:
Email addresses, Passwords, UsernamesTGBUS.com
Leak Details:
In approximately 2017, it's alleged that the Chinese gaming site known as TGBUS suffered a data breach that impacted over 10 million unique subscribers.Total Record Count:
12,052,683Compromised data:
Email addresses, Passwords, UsernamesTianya.cn
Leak Details:
In December 2011, China's largest online forum known as Tianya was hacked and tens of millions of accounts were obtained by the attacker. The leaked data included names, usernames and email addresses.Total Record Count:
29,550,626Compromised data:
Email addresses, Names, UsernamesTintenProfi.ch
Leak Details:
This database leak was found being spread on a clearnet 'Hacker’s Forum'. Very little is known about this hack and as such is considered unverified. More information will be added about this leak as it comes available.Total Record Count:
90,148Compromised data:
Email addresses, PasswordsTumblr
Leak Details:
In early 2013, tumblr suffered a data breach which resulted in the exposure of over 65 million accounts. The data was later put up for sale on a dark market website and included email addresses and passwords stored as salted SHA1 hashes.Total Record Count:
73,358,059Compromised data:
Email addresses, PasswordsTwitter
Leak Details:
This database leak was found being spread on a clearnet 'Hacker’s Forum'. Very little is known about this hack and as such is considered unverified. More information will be added about this leak as it comes available.Total Record Count:
40,389,892Compromised data:
Email addresses, Passwordsuuu9.com
Leak Details:
In September 2016, data was allegedly obtained from the Chinese website known as uuu9.com and contained 7.5M accounts. The data in the breach contains email addresses and user names.Total Record Count:
9,691,178Compromised data:
Email addresses, Passwords, UsernamesVK
Leak Details:
In approximately 2012, the Russian social media site known as VK was hacked and almost 100 million accounts were exposed. The data emerged in June 2016 where it was being sold via a dark market website and included names, phone numbers email addresses and plain text passwords.Total Record Count:
100,253,796Compromised data:
Email addresses, Names, Passwords, Phone numbersWanelo
Leak Details:
In approximately December 2018, the digital mall Wanelo suffered a data breach. The data was later placed up for sale on a dark web marketplace along with a collection of other data breaches in April 2019. A total of 23 million unique email addresses were included in the breach alongside passwords stored as either MD5 or bcrypt hashes.Total Record Count:
23,180,862Compromised data:
Email addresses, IP addresses, Names, Passwords, Physical addressesWattpad
Leak Details:
In June 2020, the user-generated stories website Wattpad suffered a huge data breach that exposed almost 270 million records. The data was initially sold then published on a public hacking forum where it was broadly shared. The incident exposed extensive personal information including names and usernames, email and IP addresses, genders, birth dates and passwords stored as bcrypt hashes.Total Record Count:
256,574,339Compromised data:
Bios, Dates of birth, Email addresses, Genders, Geographic locations, IP addresses, Names, Passwords, Social media profiles, UseWeHeartIt.com
Leak Details:
In November 2013, the image-based social network We Heart It suffered a data breach. The data contained user names, email addresses and password hashes, 80% of which were salted SHA-256 with the remainder being MD5 with no salt.Total Record Count:
8,604,711Compromised data:
Email addresses, Passwords, UsernamesWeibo.com
Leak Details:
In late 2011, a series of data breaches in China affected up to 100 million users, including the social site known as Weibo. Whilst there is evidence that the data is legitimate, due to the difficulty of emphatically verifying the Chinese breach it has been flagged as "unverified". The data in the breach contains email addresses and cleartext passwordsTotal Record Count:
4,505,911Compromised data:
Email addresses, PasswordsWishbone
Leak Details:
In August 2016, the mobile app to "compare anything" known as Wishbone suffered a data breach. The data contained 9.4 million records with 2.2 million unique email addresses and was allegedly a subset of the complete data set. The exposed data included genders, birthdates, email addresses and phone numbers for an audience predominantly composed of teenagers and young adults.Total Record Count:
40,295,195Compromised data:
Auth tokens, Dates of birth, Email addresses, Genders, Names, Phone numbers, UsernamesXat.comm
Leak Details:
In November 2015, the online chatroom known as "xat" was hacked and 6 million user accounts were exposed. Used as a chat engine on websites, the leaked data included usernames, email and IP addresses along with hashed passwords.Total Record Count:
5,937,341Compromised data:
Email addresses, IP addresses, Passwords, Usernames, Website activityYouku
Leak Details:
In late 2016, the online Chinese video service Youku suffered a data breach. The incident exposed 92 million unique user accounts and corresponding MD5 password hashes. The data was contributed to Have I been pwned courtesy of rip@creep.im.Total Record Count:
97,466,235Compromised data:
Email addresses, PasswordsZing.vn
Leak Details:
In April 2018, news broke of a massive data breach impacting the Vietnamese company known as VNG after data was discovered being traded on a popular hacking forum where it was extensively redistributed. The breach dated back to an incident in May of 2015 and included of over 163 million customers. The data in the breach contained a wide range of personal attributes including usernames, birth dates, genders and home addresses along with unsalted MD5 hashes and 25 million unique email addresses.Total Record Count:
163,323,012Compromised data:
Dates of birth, Email addresses, Genders, IP addresses, Marital statuses, Names, Occupations, Passwords, Phone numbers, PhysicalZomato.com
Leak Details:
In May 2017, the restaurant guide website Zomato was hacked resulting in the exposure of almost 17 million accounts. The data was consequently redistributed online and contains email addresses, usernames and salted MD5 hashes of passwords (the password hash was not present on all accounts).Total Record Count:
16,474,465Compromised data:
Email addresses, Passwords, UsernamesZoosk
Leak Details:
In approximately 2011, an alleged breach of the dating website Zoosk began circulating. Comprised of almost 53 million records, the data contained email addresses and plain text passwords. However, during extensive verification in May 2016 no evidence could be found that the data was indeed sourced from the dating service. This breach has consequently been flagged as fabricated; it's highly unlikely the data was sourced from Zoosk.Total Record Count:
55,471,885Compromised data:
Email addresses, PasswordsZynga