Breach Intelligence

2,855

Total breached databases

Georgia 2018 Voter 2018

Georgia 2018 Voter 2018

Sometime before 2018, the U.S. state of Georgia's voter registration database was allegedly leaked and later distributed on a public hacking forum. Reports suggest the data covered approximately 6.7 million registered Georgia voters. The exposed records reportedly included full names, residential and mailing addresses, dates of birth, genders, race, and voter registration identifiers. It has been reported that the dataset contained no email addresses or passwords.
  • Data: Names Phone Numbers Physical Locations Government IDs Genders Birthdates Personal Information
  • Records: 6,684,811
  • Lines: 6,684,811
  • Size: 1.47 GB
  • Passwords: No
Colorado 2018 Voter 2017

Colorado 2018 Voter 2017

The Colorado 2017 Voter Database, containing approximately 3.6 million records, was uploaded on a hacking forum. Compromised data includes Voter IDs, Full Names, Physical Addresses, Previous Addresses, Dates of Birth, Genders, Phone Numbers, and Voter Status. The breach does not include any passwords or email addresses.
More information on similar breaches can be found on RF Database Index.
  • Date: 2017
  • Domain: colorado.gov
  • Country: United States
  • Category: Government
  • Data: Names Phone Numbers Physical Locations Government IDs Genders Birthdates Political Affiliation
  • Records: 3,525,884
  • Lines: 3,525,885
  • Size: 1.25 GB
  • Passwords: No
New Jersey Voter 2017

New Jersey Voter 2017

In 2017, the New Jersey state voter registration database (nj.gov) was allegedly leaked and later redistributed for free on a hacking forum. Reports suggest the records of approximately 5.5 million New Jersey residents were exposed, including full names, physical and previous addresses, dates of birth, genders, phone numbers, and government-issued voter IDs. No passwords were included.
  • Date: 2017
  • Domain: nj.gov
  • Country: United States
  • Category: Government
  • Data: Names Phone Numbers Physical Locations Government IDs Genders Birthdates Personal Information
  • Records: 5,578,302
  • Lines: 5,578,303
  • Size: 1.21 GB
  • Passwords: No
Connecticut 2018 Voter 2018

Connecticut 2018 Voter 2018

In October 2018, a voter database for the state of Connecticut was leaked on an underground forum. The compromised database includes approximately 2.29 million records. Some of the leaked data includes voter IDs, full names, physical addresses, previous addresses, dates of birth, genders, phone numbers, voter status, and voter history.
  • Data: Names Phone Numbers Physical Locations Government IDs Genders Birthdates Political Affiliation
  • Records: 2,290,209
  • Lines: 2,290,207
  • Size: 1.65 GB
  • Passwords: No
Arkansas 2017 Voter 2017

Arkansas 2017 Voter 2017

In 2017, the Arkansas voter registration database, associated with the domain arkansas.gov, was allegedly leaked and distributed on a hacking forum. Reports suggest the data of approximately 1.7 million individuals was exposed, including full names, dates of birth, genders, residential addresses, phone numbers, voter registration details, and other personal information. The exposed records did not contain passwords.
  • Date: 2017
  • Domain: arkansas.gov
  • Country: United States
  • Category: Government
  • Data: Names Phone Numbers Physical Locations Government IDs Genders Birthdates Personal Information
  • Records: 1,746,066
  • Lines: 1,746,067
  • Size: 584.07 MB
  • Passwords: No
Rhode Island 2017 Voter 2017

Rhode Island 2017 Voter 2017

In 2017, a database containing voter information from Rhode Island was compromised. The breach exposed approximately 770,000 voter records. Among the compromised data were voter IDs, full names, physical addresses, previous addresses, dates of birth, genders, voter statuses, email addresses, and phone numbers.
  • Date: 2017
  • Domain: ri.gov
  • Country: United States
  • Category: Government
  • Data: Names Email Addresses Phone Numbers Physical Locations Government IDs Genders Birthdates Political Affiliation
  • Records: 770,422
  • Lines: 770,424
  • Size: 133.21 MB
  • Passwords: No
Web Hosting Talk 2016

Web Hosting Talk 2016

In July 2016, the web hosting industry forum Web Hosting Talk (webhostingtalk.com) allegedly suffered a data breach that was subsequently offered for sale. Reports suggest the vBulletin-based forum exposed approximately 516,000 user records. The compromised data reportedly included usernames, email addresses, IP addresses, and salted MD5 password hashes.
  • Data: Email Addresses Passwords Usernames
  • Records: 576,475
  • Lines: 576,479
  • Size: 63.61 MB
  • Passwords: vBulletin
  • Cracked: 0%

Frequently Asked Questions

A data breach is unauthorized access to data (often involving account takeover, malware, or misconfigured infrastructure). A data leak is exposure of data due to mistakes like public cloud storage, open databases, or accidental publishing. A database dump is a packaged dataset that may come from a breach, leak, scraping, or aggregation.

Change passwords for any affected accounts immediately, prioritizing email, banking, and any account that shares the same password. Enable multi-factor authentication wherever possible. Monitor your accounts for suspicious activity and consider placing a fraud alert or credit freeze if financial data was exposed.

Start with containment and verification: confirm what data was exposed, identify the entry point, rotate credentials (especially SSO, VPN, email), and enforce MFA. Then investigate affected systems, notify stakeholders as required, and harden controls to prevent recurrence. A structured incident response plan helps keep the work measurable and compliant.

Dark web monitoring helps you spot exposure signals early — before stolen data is widely reused for account takeover or targeted attacks. Monitoring complements vulnerability management by revealing when attackers already have leverage. Pair it with continuous attack surface monitoring and strong Asset Discovery to reduce blind spots.

Not always. Some datasets are old, incomplete, or derived from third parties. However, any exposure increases risk because credentials and personal data can be reused indefinitely. Treat it as a priority signal: rotate credentials, enforce MFA, review suspicious logins, and audit the systems that could have produced the data.

SynScan helps you connect the dots between attack surface exposure, vulnerabilities, and breach signals so you can prioritize remediation and reduce the chance of repeat incidents.