Breach Intelligence

2,850

Total breached databases

Alaska 2018 Voter 2018

Alaska 2018 Voter 2018

In October 2018 I decided I would require every database I could with Voter's informations this was in part achieved by gaining access to the state's official SSH / SFTP servers and downloading the data. Some data was crowdfunded by users and some was obtained by me with the aforementioned methods.
  • Date: Oct 2018
  • Domain: alaska.gov
  • Country: United States
  • Category: Government
  • Records Announced: 570,168
  • Data: Birthdates Genders Government IDs Names Physical Locations Political Affiliation
  • Imported:
  • Passwords: No

ElfWood 2016

In May 2016, ElfWood, a community platform for artists and writers to share science fiction and fantasy content, reportedly suffered a data breach. The breach allegedly affected approximately 160,000 users. Among the compromised data were full names, usernames, email addresses, and passwords.
  • Date: May 2016
  • Domain: elfwood.com
  • Category: Literature
  • Records Announced: 160,160
  • Data: Email Addresses Passwords Names Usernames
  • Imported:
  • Passwords: BCrypt
  • Cracked: 0%
?

Worldoffun.com.ph

Details about the Worldoffun.com.ph breach remain unavailable. Once it is imported, you will be able to check if your data was affected. Until then, you may search through other breaches to stay informed.

  • Data: At this stage, the exact nature of the compromised information in the Worldoffun.com.ph breach is unknown. Updates will be provided as they are verified.
  • Imported:
  • Number of lines: 24,451
  • Size: 14.79 MB
  • Passwords: ?
Cronicabalear.es 2018

Cronicabalear.es 2018

No detailed description is available for the Cronicabalear.es 2018 data breach. This entry is listed for awareness, and once it is imported, you will be able to check if your personal data was exposed. Meanwhile, you can see if your information is present in other breaches.

  • Data: Email Addresses Usernames
  • Imported:
  • Number of lines: 200,510
  • Size: 161.86 MB
  • Passwords: No

Boxee 2014

In March 2014, Boxee, a developer of home theatre PC software, experienced a data breach affecting its user forums. Attackers reportedly obtained the entire vBulletin MySQL database and posted it for download directly on the Boxee forum. The breach exposed data from approximately 160,000 users. Among the compromised information were email addresses, geographic locations, IP addresses, usernames, passwords, birthdates, private messages, linked social profiles, and personal websites.
  • Data: Birthdates Email Addresses Geographic Locations IP Addresses Messages Passwords Social Profiles Usernames Websites
  • Imported:
  • Number of lines: 218,217
  • Size: 141.61 MB
  • Passwords: vBulletin
  • Cracked: 91%
Oregon 2018 Voter 2018

Oregon 2018 Voter 2018

In October 2018 I decided I would require every database I could with Voter's informations this was in part achieved by gaining access to the state's official SSH / SFTP servers and downloading the data. Some data was crowdfunded by users and some was obtained by me with the aforementioned methods.
  • Date: Oct 2018
  • Domain: oregon.gov
  • Country: United States
  • Category: Government
  • Records Announced: 3,179,345
  • Source: dehashed.com
  • Data: Birthdates Genders Government IDs Names Phone Numbers Physical Locations Political Affiliation
  • Imported:
  • Passwords: No
Iranlaptopparts.com 2023

Iranlaptopparts.com 2023

Details about the Iranlaptopparts.com 2023 breach remain unavailable. Once it is imported, you will be able to check if your data was affected. Until then, you may search through other breaches to stay informed.

  • Data: At this stage, the exact nature of the compromised information in the Iranlaptopparts.com 2023 breach is unknown. Updates will be provided as they are verified.
  • Imported:
  • Number of lines: 267,671
  • Size: 54.62 MB
  • Passwords: ?

Frequently Asked Questions

A data breach is unauthorized access to data (often involving account takeover, malware, or misconfigured infrastructure). A data leak is exposure of data due to mistakes like public cloud storage, open databases, or accidental publishing. A database dump is a packaged dataset that may come from a breach, leak, scraping, or aggregation.

Change passwords for any affected accounts immediately, prioritizing email, banking, and any account that shares the same password. Enable multi-factor authentication wherever possible. Monitor your accounts for suspicious activity and consider placing a fraud alert or credit freeze if financial data was exposed.

Start with containment and verification: confirm what data was exposed, identify the entry point, rotate credentials (especially SSO, VPN, email), and enforce MFA. Then investigate affected systems, notify stakeholders as required, and harden controls to prevent recurrence. A structured incident response plan helps keep the work measurable and compliant.

Dark web monitoring helps you spot exposure signals early — before stolen data is widely reused for account takeover or targeted attacks. Monitoring complements vulnerability management by revealing when attackers already have leverage. Pair it with continuous attack surface monitoring and strong Asset Discovery to reduce blind spots.

Not always. Some datasets are old, incomplete, or derived from third parties. However, any exposure increases risk because credentials and personal data can be reused indefinitely. Treat it as a priority signal: rotate credentials, enforce MFA, review suspicious logins, and audit the systems that could have produced the data.

SynScan helps you connect the dots between attack surface exposure, vulnerabilities, and breach signals so you can prioritize remediation and reduce the chance of repeat incidents.