New breach: "Carding" website Altenen had 1.3M records breached in June 2022 including email, username, bcrypt password hash and cryptocurrency wallet address. 29% were already in @Have I Been Pwned. It later appeared as part of a larger breach corpus: https://cybernews.com/security/billions-passwords-credentials-leaked-mother-of-all-breaches/

New breach: Z-lib, a malicious clone of book pirating platform Z-Library, had 10M records breached in June. Data included username, email address Bitcoin and Monero address, purchases and bcrypt password hash. 49% were already in @Have I Been Pwned. More: https://cybernews.com/security/zlibrary-copycat-exposes-millions-digital-pirates/

New breach: MMO game Stalker Online had over 1.3M records breached in 2020. Data included email and IP address, username and hashed password. 64% were already in @Have I Been Pwned. Read more:

Hot for Security

Data Breach: Hacker Sells Over 1.3 Million User Records of Popular Stalker Online MMO Game on Dark Web Marketplace

This week, Cyber News researchers announced that cyber thieves are offering for sale more than 1.

New sensitive breach: Adult website TNAFlix had 1.4M records breached in 2022. Data included email and IP address, username and plain text password. 77% were already in @Have I Been Pwned. Data was later distributed as part of a larger corpus: https://cybernews.com/security/billions-passwords-credentials-leaked-mother-of-all-breaches/