Breachreport logotype Breachreport logotype
Sign in

Breach catalogue

000webhost.com Date breach: October 2015
15,311,565 accounts
Encryption: plain text
Description: In October 2015, 000webhost, a free web hosting service which supports both PHP and MySQL, experienced a data breach. The attacker used an unpatched version of PHP to place malicious files and gain access to the service's systems. Stolen data includes usernames, passwords, email addresses, IP addresses and names.
Data compromised: username, password, email, ip address, name
126.com Date breach: 2012
7,297,719 accounts
Encryption: plain text
Description: In January 2012, a Chinese site known as NetEase (located at 163.com and 126.com) experienced a massive attack on the private information. The incident was reported in October 2015, as a data breach that impacted hundreds of millions of subscribers. The data in the breach contains email addresses and plain text passwords. Approximately 288M entries from the database were leaked in plain text and MD5 hashing algorithm.
Data compromised: email, password
17.Media Date breach: March 2016
3,872,292 accounts
Encryption: plain text
Description: In 2016, video streaming website, originally created by aiwanese pop singer Jeffery Huang suffered a breach. The attack comrpomised more than 30M accounts when the massive dump was offered for sale on the famous deep web marketplace.
Data compromised: email, password
17173.com Date breach: 2018
9,755,600 accounts
Encryption: plain text
Description: In 2018, a Chinese gaming website 17173.com experienced a breach. More than 18M accounts were compromised. The leaked file contains email addresses, usernames, plaintext passwords and MD5 hashes of passwords.
Data compromised: email, username, hashed password, plaintext password
178.com Date breach: December 2011
9,072,823 accounts
Encryption: plain text
Description: In December 2011, the website 178.com a Chinese gaming website was hacked resulting in 10M unique user data being compromised. This breach occured in the series of hacks on Chinese websites, most famous being CDSN and Duowan. All user credentials were found in plain text.
Data compromised: email, password, username
212300.com Date breach: November 2012
710,225 accounts
Encryption: plain text
Description: In November 2012, 212300.com experienced a data breach. 212300.com file consisted of 710,000 user accounts compromising email addresses, user names, passwords and salted hashed passwords. The owners of the website have not given the official statement yet, nevertheless the database content has not been found in the previously leaked files. The website is no longer active.
Data compromised: email, username, password, salted hashed password
24404214.com.tw Date breach: February 2018
3,337 accounts
Encryption: plain text
Description: In February 2018, 24404214.com.tw breached file surfaced on the web. The database consisted of 3.3K user accounts, compromising email addresses and plaintext passwords. The owners of the website have not given the official statement yet, nevertheless the database content has not been found in the previously leaked files.
Data compromised: email, password
36fm.pl Date breach: 2012
88 accounts
Encryption: plain text
Description: In 2012, 36fm.pl breached file surfaced on the web. The database consisted of 88 user accounts, containing usernames, MD5-hashed passwords, and emails. The owners of the website have not given the official statement yet, nevertheless the database content has not been found in the previously leaked files.
Data compromised: username, hashed password, email
4discounttravel.com Date breach: 08 April 2018
14,485 accounts
Encryption: plain text
Description: In April 2018, travel website 4discounttravel.com experienced a data breach. The hack compromised 14.4K user accounts, containing email addresses and plain text passwords. The owners of the website have not given the official statement yet, nevertheless the database content has not been found in the previously leaked files.
Data compromised: email, plaintext password
51cto.com Date breach: December 2013
2,154,744 accounts
Encryption: unknown
Description: In December 2013, 51cto.com, a Chinese electronics site, suffered a data breach. The attack compromised 2.2M accounts out of which 87% passwords were encrypted and found in plain text.
Data compromised: email, password
6deploy.eu Date breach: 11 November 2019
12,510 accounts
Encryption: plain text
Description: In November 2019, 6deploy.eu breached file surfaced on the web. The database consisted of 12.5K user accounts, compromising email addresses, usernames, hashed and plaintext passwords. The owners of the website have not given the official statement yet, nevertheless the database content has not been found in the previously leaked files.
Data compromised: email, password, username
740074.ru Date breach: November 2017
6,409 accounts
Encryption: plain text
Description: In November 2017, 740074.ru breached file surfaced on the web. The database consisted of 6,4K user accounts, compromising email addresses and passwords. The owners of the website have not given the official statement yet, nevertheless the database content has not been found in the previously leaked files.
Data compromised: email, password
7k7k.com Date breach: 2011
10,137,478 accounts
Encryption: unknown
Description: In 2011, many Chinese websites experienced massive security attacks. Among them, the gaming site 7k7k.com was breached resulting in 20M exposed accounts. The exposed data contained email addresses and passwords in stored in plaintext.
Data compromised: email, plaintext password
8teenxxx.com Date breach: 02 March 2016
375 accounts
Encryption: plain text
Description: In March 2016, 8teenxxx.com breached file surfaced on the web. The database consisted of 375 user accounts, compromising usernames, email addresses and plain text passwords. The owners of the website have not given the official statement yet, nevertheless the database content has not been found in the previously leaked files.
Data compromised: username, email, password
8Tracks.com Date breach: June 2017
7,988,553 accounts
Encryption: plain text
Description: In 2017, radio service 8tracks experienced a data breach. The file exposes details of 18M users containing email addresses, hashed passwords and usernames. Passwords were encrypted by the SHA1 algorithm known as the weak encryption protocol.
Data compromised: email, hashed password, username
8Tracks.com Date breach: June 2017
17,975,695 accounts
Encryption: SHA-1
Description: In June 2017, an internet based radio and music social networking website 8tracks.com was breached and around 18 milion accounts were compromised. 8tracks acknowledged the leak, saying that info was stolen only from users who signed up by email. 8tracks points out that users who signed up for the service via Google or Facebook authentication have not had their passwords compromised by the breach. Even though the passwords were hashed and salted, 8tracks.com recommended that users change their passwords anyway.
Data compromised: email, salted hashed password
aavso.org Date breach: August 2014
2,718 accounts
Encryption: plain text
Description: In august 2014, the site aavso.org suffered a data breach. The attack compromised 2,7k accounta containing email addresses and passwords.
Data compromised: email, password
ABA.com Date breach: October 2016
6,147 accounts
Encryption: plain text
Description: In October 2015, a major financial industry trade group ABA.com suffered a data breach. The attack compromised 6.147 accounts containing usernames and passwords.The database was posted online on the web.
Data compromised: username, password, personal data
abafest.com Date breach: November 2017
756 accounts
Encryption: plain text
Description: In November 2017, abafest.com breached file surfaced on the web. The database consisted of 756 user accounts, containing email addresses and passwords. The owners of the website have not given the official statement yet, nevertheless the database content has not been found in the previously leaked files.
Data compromised: email, password
Abandonia.com Date breach: November 2015
782,609 accounts
Encryption: plain text
Description: In November 2015 the gaming site Abandonia suffered a data breach resulting in the exposure of 776k unique user records. The data contained email and IP addresses, usernames and salted MD5 hashes of passwords.
Data compromised: email, ip address, username, salted hashed password
abraham-hicks.com Date breach: February 2018
1,158,039 accounts
Encryption: plain text
Description: In February 2018, a large amount of breached files surfaced on the web. abraham-hicks.com file consisted of 1.1 million user accounts, compromising email addresses and plaintext passwords. The owners of the website have not given the official statement yet, nevertheless the database content has not been found in the previously leaked files.
Data compromised: email, password
accountgear.com Date breach: November 2017
512,330 accounts
Encryption: plain text
Description: In November 2017, accountgear.com breached file surfaced on the web. The database consisted of 512K user accounts, containing email addresses and passwords. The owners of the website have not given the official statement yet, nevertheless the database content has not been found in the previously leaked files.
Data compromised: email, password
Acne.org Date breach: November 2014
458,097 accounts
Encryption: plain text
Description: In November 2014, a website and forum for people with skin disease Acne.org suffered a data breach. The breach compromised 458,097 accounts containing dates of birth, email addresses, IP addresses, passwords, usernames. The stolen data was later being sold on the dark web. Acne.org administrators stated they could not verify if the passwords were stolen because they used 2 step encryption system.
Data compromised: birth date, email, ip address, username, plaintext password
Adbazzaar.Com Date breach: November 2017
25,219 accounts
Encryption: plain text
Description: In November 2017, adbazzaar.com breached file surfaced on the web. The database consisted of 25.2K user accounts, compromising email addresses and plaintext passwords. The owners of the website have not given the official statement yet, nevertheless the database content has not been found in the previously leaked files.
Data compromised: email, password
adclickerads.com Date breach: November 2017
1,991 accounts
Encryption: plain text
Description: In November 2017, adclickerads.com breached file surfaced on the web. The database consisted of 1.9K user accounts, containing email addresses and passwords. The owners of the website have not given the official statement yet, nevertheless the database content has not been found in the previously leaked files.
Data compromised: email, password
adere-pg.pt Date breach: November 2017
9,482 accounts
Encryption: plain text
Description: In November 2017, adere-pg.pt breached file surfaced on the web. The database consisted of 9.4K user accounts, containing email addresses and passwords. The owners of the website have not given the official statement yet, nevertheless the database content has not been found in the previously leaked files.
Data compromised: email, password
Adobe.com Date breach: 13 October 2013
153,004,874 accounts
Encryption: plain text
Description: In October 2013, Adobe officially confirmed the breach to their network. The compromised data included the source code for Adobe products, usernames and encrypted passwords of around 38M user accounts.
Data compromised: email, password, product source code
AdultFriendFinder.com Date breach: October 2016
3,600,527 accounts
Encryption: plain text
Description: In October 2016, the social media site “Adult Friend Finder” was breached. The attackers stole data of over 412M accounts making it the biggest breach of 2016. The attack compromised email addresses, passwords, dates of last visits, browser information, IP addresses and site membership status of users. The passwords were stored in either plaintext or salted by SHA1 encryption which is not a strong security mechanism for personal data. Among the leaked accounts there were about 80,000 US military and government email addresses.
Data compromised: email, password, site activities, browser information, ip address, site activities
Advantagerealtyofaltus.Com Date breach: November 2017
6,753 accounts
Encryption: plain text
Description: In November 2017, Advantagerealtyofaltus.com breached file surfaced on the web. The database consisted of 6.7K user accounts, containing email addresses and passwords. The owners of the website have not given the official statement yet, nevertheless the database content has not been found in the previously leaked files.
Data compromised: email, password
aeronavegantes.org.ar Date breach: 13 March 2019
864 accounts
Encryption: plain text
Description: In 13 march 2019, the Argentinian service aeronavegantes.org.ar suffered a data breach. The attack compromised 1.2K accounts containing names, email addresses, phone numbers and passwords.
Data compromised: username, name, email, phone number, password
africanaffair.net Date breach: November 2017
2,265 accounts
Encryption: plain text
Description: In November 2017, africanaffair.net breached file surfaced on the web. The database consisted of 2.2K user accounts, containing email addresses and passwords. The owners of the website have not given the official statement yet, nevertheless the database content has not been found in the previously leaked files.
Data compromised: email, password
afs.com.tw Date breach: November 2017
89,230 accounts
Encryption: plain text
Description: In November 2017, afs.com.tw breached file surfaced on the web. The database consisted of 89.2K user accounts, containing email addresses and passwords. The owners of the website have not given the official statement yet, nevertheless the database content has not been found in the previously leaked files.
Data compromised: email, password
Agnusdeiloja.com.br Date breach: November 2017
5,095 accounts
Encryption: plain text
Description: In November 2017, agnusdeiloja.com.br breached file surfaced on the web. The database consisted of 5K user accounts, containing email addresses and passwords. The owners of the website have not given the official statement yet, nevertheless the database content has not been found in the previously leaked files.
Data compromised: email, password
Agoravale.com.br Date breach: November 2017
18,191 accounts
Encryption: plain text
Description: In November 2017, agoravale.com.br breached file surfaced on the web. The database consisted of 18.1K user accounts, containing email addresses and passwords. The owners of the website have not given the official statement yet, nevertheless the database content has not been found in the previously leaked files.
Data compromised: email, password
AGPeStores.com Date breach: 19 December 2015
151,002 accounts
Encryption: plain text
Description: In Decemeber 2015, a hacker group Comcastkids hacked agpestores.com. The file contained 120,000 usernames and passwords of payments processing company Access Group Processing.
Data compromised: -
Agro-Aero.pl Date breach: 2012
330 accounts
Encryption: plain text
Description: In 2012, Agro-Aero.pl breached file surfaced on the web. The database consisted of 330 user accounts, containing usernames, MD5-hashed passwords, and email addresses. The owners of the website have not given the official statement yet, nevertheless the database content has not been found in the previously leaked files.
Data compromised: username, hashed password, email
AhaShare.com Date breach: May 2013
353,331 accounts
Encryption: plain text
Description: In 2013, torrent site AhaShare.com was hacked. The breach compromised 190,000 accounts containing user names, email and IP addresses and encrypted passwords. The site protection was low and the attack was executed with the simple SQl injection method.
Data compromised: username, ip address, hashed password, email
ahlulbait.org Date breach: November 2017
496 accounts
Encryption: plain text
Description: In November 2017, ahlulbait.org breached file surfaced on the web. The database consisted of 496 user accounts, containing email addresses and passowrds. The owners of the website have not given the official statement yet, nevertheless the database content has not been found in the previously leaked files.
Data compromised: email, password
aicog2017.com Date breach: November 2017
983 accounts
Encryption: plain text
Description: In November 2017, aicog2017.com breached file surfaced on the web. The database consisted of 1.1K user accounts, containing email addresses and passwords. The owners of the website have not given the official statement yet, nevertheless the database content has not been found in the previously leaked files.
Data compromised: email, password
Aipai.com Date breach: July 2016
6,507,276 accounts
Encryption: plain text
Description: In July 2016, data allegedly obtained from the Chinese gaming website known as Aipai.com and containing 6.5M accounts was leaked online. Whilst there is evidence that the data is legitimate, due to the difficulty of emphatically verifying the Chinese breach it has been flagged as "unverified". The data in the breach contains email addresses and MD5 password hashes.
Data compromised: email, hashed password
AircraftOnline.com.au Date breach: November 2013
1,303 accounts
Encryption: plain text
Description: In November 2013, sportaircraftsales.com.au breached file surfaced on the web. The database consisted of 1.3K user accounts, containing email addresses, passwords and usernames. The owners of the website have not given the official statement yet, nevertheless the database content has not been found in the previously leaked files.
Data compromised: email, password, username
akademikbakis.org Date breach: November 2017
2,173 accounts
Encryption: plain text
Description: In November 2017, akademikbakis.org breached file surfaced on the web. The database consisted of 2.1K user accounts, containing email addresses and passwords. The owners of the website have not given the official statement yet, nevertheless the database content has not been found in the previously leaked files.
Data compromised: email, password
akronsusedcars.com Date breach: November 2017
1,033 accounts
Encryption: plain text
Description: In November 2017, akronsusedcars.com breached file surfaced on the web. The database consisted of 1K user accounts, containing email addresses and passwords. The owners of the website have not given the official statement yet, nevertheless the database content has not been found in the previously leaked files.
Data compromised: email, password
alastornet.com.ar Date breach: November 2017
1,379 accounts
Encryption: plain text
Description: In November 2017, alastornet.com.ar breached file surfaced on the web. The database consisted of 1.3K user accounts, containing email addresses and passwords. The owners of the website have not given the official statement yet, nevertheless the database content has not been found in the previously leaked files.
Data compromised: email, password
AliceDelice.com Date breach: 2017
71,240 accounts
Encryption: plain text
Description: In January 2017, SweClockers.com experienced a data breach. The stolen data contains 71.240 records, including email addresses and passwords. The owners of the website have not given the official statement yet, nevertheless the database content has not been found in the previously leaked files.
Data compromised: email, password
allmyfavorites.net Date breach: November 2017
46,086 accounts
Encryption: plain text
Description: In November 2017, Allmyfavorites.net experienced a data breach. The hack compromised 46.086 accounts containing email addresses and primarily plaintext passwords. The owners of the website have not given the official statement yet, nevertheless the database content has not been found in the previously leaked files.
Data compromised: email, plaintext password
AllWomenStalk.com Date breach: 2016
139,926 accounts
Encryption: plain text
Description: In January 2016, AllWomensTalk experienced a data breach alongside Battlefy, Safetune and Milq. Approximately 42 million email addresses, usernames, and hashed passwords have been compromised, among which around 1.4M came from AllWomensTalk magazine.
Data compromised: -
amarider.co.za Date breach: July 2018
18,886 accounts
Encryption: plain text
Description: In July 2018, the site amarider.co.za suffered a data breach. The attack compromised more than 18,800 accounts containing usernames, email addresses and plain text passwords.
Data compromised: email, username, plaintext password
Ambru.nl Date breach: December 2016
1 accounts
Encryption: plain text
Description: In December 2016, the Russian Consular Department’s Website “ambru.nl” was hacked by Kapustkiy. Ambru.nl was holding information about Russian citizens residing in Netherlands. The attack compromised 6,000 accounts containing names, phone numbers, emails and passport numbers of users.
Data compromised: name, phone number, email, passport data
amigaworld.net Date breach: 01 October 2018
6,436 accounts
Encryption: plain text
Description: In October 2018, the forum amigaworld.net experienced some inconsistencies in their standard website activity. The attack compromised 6,436 accounts containing email addresses and passwords. The owners of the website did not directly confirmed the breach but they recognized the irregular website activity.
Data compromised: email, password

Remember, you can also lose your bank details, social security numbers, business and personal records in account takeovers.

Check your email through our database of breaches to be safe

Searching,
please wait

Our website uses cookies to ensure the best website experience.
By clicking ‘Accept’ or navigating through the site you agree with our Cookie policy