Breach Intelligence

2,850

Total breached databases

D2football.com 2024

D2football.com 2024

In 2024, D2Football.com, a website that provides news, scores, rankings, and other information related to NCAA Division II football, allegedly suffered a data breach. Reports suggest that this incident exposed approximately 5,517 user records. Among the compromised data were email addresses, geographic locations, usernames, passwords, and phone numbers. The passwords were reportedly stored using encryption formats such as BCrypt and vBulletin.
  • Date: 2024
  • Domain: d2football.com
  • Country: United States
  • Category: Sports
  • Records Announced: 5,517
  • Data: Email Addresses Geographic Locations Passwords Phone Numbers Usernames
  • Imported:
  • Records Imported: 5,517
  • Number of lines: 5,517
  • Size: 742.02 KB
  • Passwords: BCrypt, vBulletin
  • Cracked: 45%
USA Employment HR Corp

USA Employment HR Corp

USA Employment HR Corp allegedly suffered a data breach. Reports suggest that the breach exposed approximately 5,114 users. Among the compromised data were names, email addresses, geographic locations, government IDs, social security numbers, genders, and birthdates.
  • Country: United States
  • Category: Professional & Corporate
  • Data: Email Addresses Names Geographic Locations Government IDs Social Security Numbers Genders Birthdates
  • Imported:
  • Records Imported: 5,114
  • Number of lines: 5,116
  • Size: 2.09 MB
  • Passwords: No
Stripe.com 2021

Stripe.com 2021

In 2021, Stripe.com, an American technology company that operates a payment processing platform primarily designed for e-commerce websites and mobile applications, allegedly suffered a data breach. It has been reported that approximately 182,012 users were exposed. Among the compromised data were email addresses, names, phone numbers, geographic locations, site activity, and birthdates.
  • Date: 2021
  • Domain: stripe.com
  • Country: United States
  • Category: Finance & Payments
  • Data: Email Addresses Names Phone Numbers Geographic Locations Site Activity Birthdates
  • Imported:
  • Records Imported: 182,012
  • Number of lines: 182,013
  • Size: 24.17 MB
  • Passwords: No
Tryoncourse.com 2022

Tryoncourse.com 2022

In 2022, the website tryoncourse.com, operated by OnCourse, a CRM and sales automation platform designed to streamline administrative tasks and enhance sales processes for businesses, allegedly suffered a data breach. Reports suggest that the breach exposed approximately 23,319 user records. Among the compromised data were email addresses, passwords, names, phone numbers, geographic locations, usernames, and site activity. The passwords included in the breach were reportedly stored using MySQL hashing.
  • Date: 2022
  • Domain: tryoncourse.com
  • Country: United States
  • Category: Professional & Corporate
  • Data: Email Addresses Passwords Names Phone Numbers Geographic Locations Usernames Site Activity
  • Imported:
  • Records Imported: 23,319
  • Number of lines: 23,979
  • Size: 13.08 MB
  • Passwords: MySQL
  • Cracked: 0%
Sexyweb.cz 2019

Sexyweb.cz 2019

In 2019, the website Sexyweb.cz, an adult content website based in the Czech Republic featuring a variety of explicit materials, allegedly suffered a data breach. Reports suggest that the breach exposed approximately 8,852 users. Among the compromised data were email addresses, plaintext passwords, and geographic locations.
  • Date: 2019
  • Domain: sexyweb.cz
  • Country: Czech Republic
  • Category: Pornography
  • Data: Email Addresses Passwords Geographic Locations
  • Imported:
  • Records Imported: 8,852
  • Number of lines: 8,871
  • Size: 233.28 KB
  • Passwords: Plaintext
Shablon.cc 2021

Shablon.cc 2021

In 2021, Shablon.cc, a Russian hacking forum that provides resources such as hacking tools, stolen data, and hosting tutorials on various forms of cyber-attacks, allegedly suffered a data breach. Approximately 11,344 users were exposed. Among the compromised data were email addresses, passwords, phone numbers, and geographic locations. The passwords exposed include those stored in plaintext and hashed with SHA-256.
  • Date: 2021
  • Domain: shablon.cc
  • Country: Russia
  • Category: Forums & Communities
  • Data: Email Addresses Passwords Phone Numbers Geographic Locations
  • Imported:
  • Records Imported: 11,344
  • Number of lines: 11,346
  • Size: 1.31 MB
  • Passwords: Plaintext, SHA-256

Unique-crew.net 2011

In 2011, Unique-Crew, a hacking forum known for discussions related to cybersecurity breaches, exploit development, and distribution of hacking tools, allegedly suffered a data breach. Approximately 4,381 users were exposed in the incident. Among the compromised data were email addresses, passwords, usernames, birthdates, and details of site activity and social profiles. Passwords were reportedly secured with the vBulletin hashing algorithm.
  • Data: Birthdates Email Addresses Passwords Site Activity Social Profiles Usernames Websites
  • Imported:
  • Records Imported: 4,381
  • Number of lines: 4,516
  • Size: 1.64 MB
  • Passwords: vBulletin
  • Cracked: 0%

Frequently Asked Questions

A data breach is unauthorized access to data (often involving account takeover, malware, or misconfigured infrastructure). A data leak is exposure of data due to mistakes like public cloud storage, open databases, or accidental publishing. A database dump is a packaged dataset that may come from a breach, leak, scraping, or aggregation.

Change passwords for any affected accounts immediately, prioritizing email, banking, and any account that shares the same password. Enable multi-factor authentication wherever possible. Monitor your accounts for suspicious activity and consider placing a fraud alert or credit freeze if financial data was exposed.

Start with containment and verification: confirm what data was exposed, identify the entry point, rotate credentials (especially SSO, VPN, email), and enforce MFA. Then investigate affected systems, notify stakeholders as required, and harden controls to prevent recurrence. A structured incident response plan helps keep the work measurable and compliant.

Dark web monitoring helps you spot exposure signals early — before stolen data is widely reused for account takeover or targeted attacks. Monitoring complements vulnerability management by revealing when attackers already have leverage. Pair it with continuous attack surface monitoring and strong Asset Discovery to reduce blind spots.

Not always. Some datasets are old, incomplete, or derived from third parties. However, any exposure increases risk because credentials and personal data can be reused indefinitely. Treat it as a priority signal: rotate credentials, enforce MFA, review suspicious logins, and audit the systems that could have produced the data.

SynScan helps you connect the dots between attack surface exposure, vulnerabilities, and breach signals so you can prioritize remediation and reduce the chance of repeat incidents.