What's happening in cyber, in plain English
We pull from NCSC, CISA, Have I Been Pwned and the NVD every six hours, then summarise each item into what it is, who it affects, and what you can do about it.
- CriticalBreachHave I Been Pwned — public breach catalog· 6 Nov 2025· summary pending
Synthient Credential Stuffing Threat Data — 2.0B accounts
During 2025, the threat-intelligence firm Synthient aggregated 2 billion unique email addresses disclosed in credential-stuffing lists found across multiple malicious internet sources . Comprised of email addresses and passwords from previous data breaches, th
- CriticalBreachHave I Been Pwned — public breach catalog· 21 Oct 2025· summary pending
Synthient Stealer Log Threat Data — 183.0M accounts
During 2025, Synthient aggregated billions of records of "threat data" from various internet sources . The data contained 183M unique email addresses alongside the websites they were entered into and the passwords used. After normalising and deduplicating the
- CriticalBreachHave I Been Pwned — public breach catalog· 13 Aug 2025· summary pending
Data Troll Stealer Logs — 109.5M accounts
In June 2025, headlines erupted over a "16 billion password" breach . In reality, the dataset was a compilation of publicly accessible stealer logs, mostly repurposed from older leaks, with only a small portion of genuinely new material. HIBP received 2.7B row
- CriticalBreachHave I Been Pwned — public breach catalog· 25 Feb 2025· summary pending
ALIEN TXTBASE Stealer Logs — 284.1M accounts
In February 2025, 23 billion rows of stealer logs were obtained from a Telegram channel known as ALIEN TXTBASE . The data contained 284M unique email addresses alongside the websites they were entered into and the passwords used. This data is now searchable in
- CriticalBreachHave I Been Pwned — public breach catalog· 13 Nov 2024· summary pending
DemandScience by Pure Incubation — 121.8M accounts
In early 2024, a large corpus of data from DemandScience (a company owned by Pure Incubation), appeared for sale on a popular hacking forum . Later attributed to a leak from a decommissioned legacy system, the breach contained extensive data that was largely b
- CriticalBreachHave I Been Pwned — public breach catalog· 13 Aug 2024· summary pending
National Public Data — 134.0M accounts
In April 2024, a large trove of data made headlines as having exposed "3 billion people" due to a breach of the National Public Data background check service . The initial corpus of data released in the breach contained billions of rows of personal information
- CriticalBreachHave I Been Pwned — public breach catalog· 9 Aug 2024· summary pending
Not SOCRadar — 282.5M accounts
In August 2024, over 332M rows of email addresses were posted to a popular hacking forum. The post alleged the addresses were scraped from cybersecurity firm SOCRadar, however an investigation on their behalf concluded that "the actor merely utilised functiona
- CriticalBreachHave I Been Pwned — public breach catalog· 3 Jun 2024· summary pending
Combolists Posted to Telegram — 361.5M accounts
In May 2024, 2B rows of data with 361M unique email addresses were collated from malicious Telegram channels . The data contained 122GB across 1.7k files with email addresses, usernames, passwords and in many cases, the website they were entered into. The data
- CriticalBreachHave I Been Pwned — public breach catalog· 5 Jan 2023· summary pending
Twitter (200M) — 211.5M accounts
In early 2023, over 200M records scraped from Twitter appeared on a popular hacking forum . The data was obtained sometime in 2021 by abusing an API that enabled email addresses to be resolved to Twitter profiles. The subsequent results were then composed into
- CriticalBreachHave I Been Pwned — public breach catalog· 2 Jan 2023· summary pending
Deezer — 229.0M accounts
In late 2022, the music streaming service Deezer disclosed a data breach that impacted over 240M customers . The breach dated back to a mid-2019 backup exposed by a 3rd party partner which was subsequently sold and then broadly redistributed on a popular hacki
- CriticalBreachHave I Been Pwned — public breach catalog· 5 Dec 2021· summary pending
Gravatar — 114.0M accounts
In October 2020, a security researcher published a technique for scraping large volumes of data from Gravatar, the service for providing globally unique avatars . 167 million names, usernames and MD5 hashes of email addresses used to reference users' avatars w
- CriticalBreachHave I Been Pwned — public breach catalog· 2 Oct 2021· summary pending
LinkedIn Scraped Data (2021) — 125.7M accounts
During the first half of 2021, LinkedIn was targeted by attackers who scraped data from hundreds of millions of public profiles and later sold them online . Whilst the scraping did not constitute a data breach nor did it access any personal data not intended t
- CriticalBreachHave I Been Pwned — public breach catalog· 4 Apr 2021· summary pending
Facebook — 509.5M accounts
In April 2021, a large data set of over 500 million Facebook users was made freely available for download . Encompassing approximately 20% of Facebook's subscribers, the data was allegedly obtained by exploiting a vulnerability Facebook advises they rectified
- CriticalBreachHave I Been Pwned — public breach catalog· 19 Nov 2020· summary pending
Cit0day — 226.9M accounts
In November 2020, a collection of more than 23,000 allegedly breached websites known as Cit0day were made available for download on several hacking forums . The data consisted of 226M unique email address alongside password pairs, often represented as both pas
- CriticalBreachHave I Been Pwned — public breach catalog· 19 Jul 2020· summary pending
Wattpad — 268.8M accounts
In June 2020, the user-generated stories website Wattpad suffered a huge data breach that exposed almost 270 million records . The data was initially sold then published on a public hacking forum where it was broadly shared. The incident exposed extensive pers
- CriticalBreachHave I Been Pwned — public breach catalog· 19 Dec 2019· summary pending
Zynga — 172.9M accounts
In September 2019, game developer Zynga (the creator of Words with Friends) suffered a data breach . The incident exposed 173M unique email addresses alongside usernames and passwords stored as salted SHA-1 hashes. The data was provided to HIBP by dehashed.com
- CriticalBreachHave I Been Pwned — public breach catalog· 22 Nov 2019· summary pending
Data Enrichment Exposure From PDL Customer — 622.2M accounts
In October 2019, security researchers Vinny Troia and Bob Diachenko identified an unprotected Elasticsearch server holding 1.2 billion records of personal data . The exposed data included an index indicating it was sourced from data enrichment company People D
- CriticalBreachHave I Been Pwned — public breach catalog· 9 Aug 2019· summary pending
Canva — 137.3M accounts
In May 2019, the graphic design tool website Canva suffered a data breach that impacted 137 million subscribers. The exposed data included email addresses, usernames, names, cities of residence and passwords stored as bcrypt hashes for users not using social l
- CriticalBreachHave I Been Pwned — public breach catalog· 14 Jul 2019· summary pending
Evite — 101.0M accounts
In April 2019, the social planning website for managing online invitations Evite identified a data breach of their systems . Upon investigation, they found unauthorised access to a database archive dating back to 2013. The exposed data included a total of 101
- CriticalBreachHave I Been Pwned — public breach catalog· 9 Mar 2019· summary pending
Verifications.io — 763.1M accounts
In February 2019, the email address validation service verifications.io suffered a data breach . Discovered by Bob Diachenko and Vinny Troia , the breach was due to the data being stored in a MongoDB instance left publicly facing without a password and resulte
- CriticalBreachHave I Been Pwned — public breach catalog· 25 Feb 2019· summary pending
Dubsmash — 161.7M accounts
In December 2018, the video messaging service Dubsmash suffered a data breach . The incident exposed 162 million unique email addresses alongside usernames and PBKDF2 password hashes. In 2019, the data appeared listed for sale on a dark web marketplace (along
- CriticalBreachHave I Been Pwned — public breach catalog· 21 Feb 2019· summary pending
MyFitnessPal — 143.6M accounts
In February 2018, the diet and exercise service MyFitnessPal suffered a data breach . The incident exposed 144 million unique email addresses alongside usernames, IP addresses and passwords stored as SHA-1 and bcrypt hashes (the former for earlier accounts, th
- CriticalBreachHave I Been Pwned — public breach catalog· 16 Jan 2019· summary pending
Collection #1 — 772.9M accounts
In January 2019, a large collection of credential stuffing lists (combinations of email addresses and passwords used to hijack accounts on other services) was discovered being distributed on a popular hacking forum. The data contained almost 2.7 billion record
- CriticalBreachHave I Been Pwned — public breach catalog· 5 Oct 2018· summary pending
Apollo — 125.9M accounts
In July 2018, the sales engagement startup Apollo left a database containing billions of data points publicly exposed without a password . The data was discovered by security researcher Vinny Troia who subsequently sent a subset of the data containing 126 mill
- CriticalBreachHave I Been Pwned — public breach catalog· 25 Jul 2018· summary pending
Exactis — 131.6M accounts
In June 2018, the marketing firm Exactis inadvertently publicly leaked 340 million records of personal data . Security researcher Vinny Troia of Night Lion Security discovered the leak contained multiple terabytes of personal information spread across hundreds
- CriticalBreachHave I Been Pwned — public breach catalog· 9 Jul 2018· summary pending
Pemiblanc — 111.0M accounts
In April 2018, a credential stuffing list containing 111 million email addresses and passwords known as Pemiblanc was discovered on a French server. The list contained email addresses and passwords collated from different data breaches and used to mount accoun
- CriticalBreachHave I Been Pwned — public breach catalog· 29 Aug 2017· summary pending
Onliner Spambot — 711.5M accounts
In August 2017, a spambot by the name of Onliner Spambot was identified by security researcher Benkow moʞuƎq . The malicious software contained a server-based component located on an IP address in the Netherlands which exposed a large number of files containin
- CriticalBreachHave I Been Pwned — public breach catalog· 18 Jul 2017· summary pending
B2B USA Businesses — 105.1M accounts
In mid-2017, a spam list of over 105 million individuals in corporate America was discovered online. Referred to as "B2B USA Businesses", the list categorised email addresses by employer, providing information on individuals' job titles plus their work phone n
- CriticalBreachHave I Been Pwned — public breach catalog· 6 May 2017· summary pending
Exploit.In — 593.4M accounts
In late 2016, a huge list of email address and password pairs appeared in a "combo list" referred to as "Exploit.In". The list contained 593 million unique email addresses, many with multiple different passwords hacked from various online systems. The list was
- CriticalBreachHave I Been Pwned — public breach catalog· 4 May 2017· summary pending
Anti Public Combo List — 458.0M accounts
In December 2016, a huge list of email address and password pairs appeared in a "combo list" referred to as "Anti Public". The list contained 458 million unique email addresses, many with multiple different passwords hacked from various online systems. The lis
Sources are pulled directly from each provider's public feed and never modified. AI summaries are produced for plain-English readability and are clearly labelled — always follow the source link for the authoritative advisory.