New sensitive breach: Doxbin had 435k email addresses scraped from the service in the last week. 75% were already in @Have I Been Pwned. Read more: https://medium.com/@zuajes/public-statement-on-the-extraction-of-emails-from-doxbin-cfd036c07a24
New breach: Frame & Optic had almost 16k email addresses breached last week. Data also included name, phone and geolocation info. 67% were already in @Have I Been Pwned. Read more:
Daily Dark Web
Eyewear Wholesaler Data Breach Sparks Privacy Concerns - Daily Dark Web
Eyewear Wholesaler Data Breach Sparks Privacy Concerns Discover the latest security threats and database leaks, including unauthorized VPN access a...
New breach: Welhof had over 100k email addresses breached last year. Data also included name, physical address and value of purchases. 70% were already in @Have I Been Pwned. Read more: https://www.welhof.com/nl_nl/klantenservice/welhof-cyberbeveiligingsincident
New breach: Otelier had 437k unique email addresses exposed for customers of hotel brands including Marriott. Data also included name, physical address, phone, purchases and some partial credit card numbers. 80% were already in @Have I Been Pwned. Read more:
BleepingComputer
Otelier data breach exposes info, hotel reservations of millions
Hotel management platform Otelier suffered a data breach after threat actors breached its Amazon S3 cloud storage to steal millions of guests'...
New breach: MSI inadvertently left 250k unique email addresses publicly exposed with RMA warranty claims last year. Data also included name, phone and physical address. 84% were already in @Have I Been Pwned. Read more:
New breach: Last week 80k email addresses breached from the Columbian website of Le Coq Sportif were published online. Data included physical and IP address, name, purchases, gender, DoB and bcrypt password hash. 68% were already in @Have I Been Pwned. More:
Daily Dark Web
Colombia: Data Breach Reported at lecoqsportif.com.co - Daily Dark Web
Colombia: Data Breach Reported at lecoqsportif.com.co Discover the latest security threats and database leaks, including unauthorized VPN access an...
New breach: Stealer logs with 71M unique addresses have been added with a new feature to return the websites the logs were collected against. 106M new passwords were also added to Pwned Passwords. 72% of addresses were already in @Have I Been Pwned. More:
Troy Hunt
Experimenting with Stealer Logs in Have I Been Pwned
TL;DR β€”Β Email addresses in stealer logs can now be queried in HIBP to discover which websites they've had credentials exposed against. Individua...
New breach: Scholastic had a breach with 4.2M unique email addresses appearing last week. Many records also included name, phone number and physical address. 70% were already in @Have I Been Pwned. Read more:
EXCLUSIVE: Scholastic, education giant and 'Harry Potter' publisher, breached by 'furry' hacker
Scholastic hack: A furry breached the education company Scholastic this month and stole data on 8 million people, the Daily Dot has learned.
New breach: SuperDraft had 300k records breached in October. Data included email address, username, transactions, lat and long, DoB and bcrypt password hashes. 62% were already in @Have I Been Pwned. Read more:
X (formerly Twitter)
Troy Hunt (@troyhunt) on X
Data breach at @superdraftdfs. Kudos for properly explaining what a bcrypt hash is and not calling it β€œencryption”!
New breach: Jewellery store GLAMIRA had 875k email addresses breached in late 2023. Data also included name, phone number and purchases. 68% were already in @Have I Been Pwned. Read more: https://www.reddit.com/r/EngagementRings/comments/1adqinl/comment/koqzq4g/