Breach Intelligence

2,850

Total breached databases

Guns and Robots (Playgar) 2016

In approximately April 2016, Guns and Robots, a gaming website, suffered a data breach that exposed around 143,000 unique user records. Among the compromised data were email addresses, IP addresses, usernames, and passwords hashed using SHA-1.
  • Data: Email Addresses IP Addresses Passwords Usernames
  • Imported:
  • Records Imported: 145,107
  • Number of lines: 145,125
  • Size: 33.43 MB
  • Passwords: SHA-1
  • Cracked: 0%
Zybez.net 2012

Zybez.net 2012

In March 2012, Zybez.net, a prominent community fansite for RuneScape, experienced a data breach that compromised approximately 151,000 user accounts. The incident involved usernames, email addresses, and passwords hashed using algorithms consistent with MyBB 1.2+ and IPB2+ (Invision Power Board). Although the breach was identified and disclosed within 24 hours, the stolen data continued to circulate online and reemerged publicly in February 2018, with some passwords reportedly cracked over time. Zybez stated that it never stored passwords in plaintext and implemented additional security measures following the breach. The site eventually shut down in 2018 after 17 years of operation.
  • Data: Email Addresses IP Addresses Passwords Usernames
  • Imported:
  • Records Imported: 151,255
  • Number of lines: 151,325
  • Size: 12.51 MB
  • Passwords: MyBB
  • Cracked: 6%
Nordic Games 2016

Nordic Games 2016

In March 2016, Nordic Games, a European game publisher, suffered a data breach that affected approximately 157,000 users. Shortly after the incident, the company rebranded as THQ Nordic. Among the compromised data were usernames, email addresses, IP addresses, and passwords stored as vBulletin hashes.
  • Data: Email Addresses IP Addresses Passwords Usernames
  • Imported:
  • Records Imported: 157,912
  • Number of lines: 157,936
  • Size: 14.1 MB
  • Passwords: vBulletin
  • Cracked: 0%

forum.cosmicpvp.com 2019

In 2019, CosmicPvP, a Minecraft Factions server launched in 2014 by YouTubers MrWoofless and PrestonPlayz, experienced a data breach. The incident reportedly affected approximately 158,000 users. Some of the leaked data includes usernames, email addresses, and gender information.
  • Data: Email Addresses Genders Geographic Locations Usernames
  • Imported:
  • Records Imported: 158,862
  • Number of lines: 158,882
  • Size: 33.25 MB
  • Passwords: No
LeagueSpy 2020

LeagueSpy 2020

In December 2020, the Sports website LeagueSpy suffered a data breach that impacted 159k members. The breach led to the exposure of data including Email addresses, IP Addresses, Usernames and Passwords stored as phpBB hashes. The website was breached by @donjuji- "adminer rogue mysql attack vector".
  • Data: Email Addresses IP Addresses Passwords Usernames
  • Imported:
  • Records Imported: 159,262
  • Number of lines: 159,476
  • Size: 78.61 MB
  • Passwords: PHPass
  • Cracked: 66%
Thecrims.com 2016

Thecrims.com 2016

In 2016, TheCrims.com, a mafia-themed browser-based role-playing game, reportedly suffered a data breach. Approximately 160,921 user records were exposed. Some of the leaked data includes usernames, hashed vBulletin passwords with salts, email addresses, IP addresses, and site activity details.
  • Data: Email Addresses IP Addresses Passwords Site Activity Social Profiles Usernames Websites
  • Imported:
  • Records Imported: 160,920
  • Number of lines: 161,007
  • Size: 247.86 MB
  • Passwords: vBulletin
  • Cracked: 0%
G FUEL 2015

G FUEL 2015

In 2015, G Fuel, an energy drink brand, experienced a data breach reportedly caused by social engineering of Shopify support, which allowed unauthorized access to the Shopify admin panel. Approximately 161,412 user records were exposed. Some of the leaked data includes names, email addresses, phone numbers, geographic locations, and order details such as total spent and total orders.
  • Date: 2015
  • Domain: gfuel.com
  • Category: E-commerce & Retail
  • Records Announced: 161,412
  • Data: Company Information Email Addresses Names Phone Numbers Physical Locations
  • Imported:
  • Records Imported: 161,432
  • Number of lines: 161,472
  • Size: 20 MB
  • Passwords: No

Frequently Asked Questions

A data breach is unauthorized access to data (often involving account takeover, malware, or misconfigured infrastructure). A data leak is exposure of data due to mistakes like public cloud storage, open databases, or accidental publishing. A database dump is a packaged dataset that may come from a breach, leak, scraping, or aggregation.

Change passwords for any affected accounts immediately, prioritizing email, banking, and any account that shares the same password. Enable multi-factor authentication wherever possible. Monitor your accounts for suspicious activity and consider placing a fraud alert or credit freeze if financial data was exposed.

Start with containment and verification: confirm what data was exposed, identify the entry point, rotate credentials (especially SSO, VPN, email), and enforce MFA. Then investigate affected systems, notify stakeholders as required, and harden controls to prevent recurrence. A structured incident response plan helps keep the work measurable and compliant.

Dark web monitoring helps you spot exposure signals early — before stolen data is widely reused for account takeover or targeted attacks. Monitoring complements vulnerability management by revealing when attackers already have leverage. Pair it with continuous attack surface monitoring and strong Asset Discovery to reduce blind spots.

Not always. Some datasets are old, incomplete, or derived from third parties. However, any exposure increases risk because credentials and personal data can be reused indefinitely. Treat it as a priority signal: rotate credentials, enforce MFA, review suspicious logins, and audit the systems that could have produced the data.

SynScan helps you connect the dots between attack surface exposure, vulnerabilities, and breach signals so you can prioritize remediation and reduce the chance of repeat incidents.