Breaches index

Search by breach name or domain

Thefaveapp.com 2016

In 2016, Fave, a shopping deals app formerly available at the now-defunct website thefaveapp.com, experienced a data breach. The platform was known for offering discounted deals on food, spa, fitness, and other services in Malaysia and Singapore. The incident reportedly exposed approximately 549,000 user records. Among the compromised data were names, email addresses, and password information stored as salted hashes.

Date: 2016
Domain: thefaveapp.com
Category: E-commerce & Retail
Records Announced: 549,120
Source: hashmob.net

Data: Email Addresses Names Passwords

Imported:
Records Imported: 549,120
Number of lines: 549,120
Size: 65.69 MB
Passwords: Rails
Cracked: 5%

Amigas (maisamigas.com.br) 2022

In approximately October 2022, maisamigas.com.br, the website of Brazilian multi-level marketing company Amigas, suffered a data breach. The incident, attributed to threat actor @thrax, reportedly exposed data belonging to around 603,000 users, including 93,000 unique email addresses. Among the compromised data were full names, email addresses, phone numbers, tax identification numbers, physical addresses, genders, marital statuses, and dates of birth.

Date: Oct 2022
Domain: maisamigas.com.br
Threat Actor: thrax
Country: Brazil
Category: Professional & Corporate
Records Announced: 603,796
Source: maisamigas.com.br

Data: Birthdates Email Addresses Genders Marital Statuses Names Phone Numbers Physical Locations Tax IDs

Imported:
Records Imported: 603,796
Number of lines: 726
Size: 164.23 MB
Passwords: No

TigerAirTW 2022

In June 2022, the Taiwan's low-cost airline Tigerair Taiwan (https://www.tigerairtw.com/) suffered a data breach exposed over 585k clients. The data contained over 656k unique email addresses, dates of birth, genders, names, passport numbers and passport expiration date as well as passwords stored as Base64(unhex(SHA-256($plaintext))) hashes.The data also contains almost 3 million credit cards.

Date: Jun 2022
Domain: tigerairtw.com
Country: Taiwan
Category: Travel
Records Announced: 585,115

Data: Birthdates Credit Card Information Email Addresses Genders Names Passports Passwords Site Activity

Imported:
Records Imported: 585,115
Number of lines: 1,902
Size: 558.94 MB
Passwords: SHA-256
Cracked:

Discover Your Leaked Data with Verified Search

Verified Search lets you see exactly which data breaches exposed your information and gives you access to the actual data, shown in plain text. To get started, verify your email address.

Verify Your Email Address

Yippiweb 2022

In April 2022, the Social media & Messaging Yippiweb suffered a data breach that impacted 578k members. The breach included Email addresses, Usernames, Phone numbers and Passwords stored as MD5 hashes.

Date: Apr 2022
Domain: yippiweb.com
Category: Social Media & Communication
Records Announced: 578,409
Source: kaduu.ch

Data: Email Addresses Passwords Phone Numbers Usernames

Imported:
Records Imported: 504,856
Number of lines: 7,633,211
Size: 485.46 MB
Passwords: MD5
Cracked:

Nulled.cr 2016

In May 2016, Nulled.cr, a cracking community forum, allegedly suffered a data breach that exposed 599,000 user accounts. The leaked data reportedly included email addresses, IP addresses, weak salted MD5 password hashes, and hundreds of thousands of private messages exchanged between members.

Date: May 6, 2016
Domain: nulled.cr
Country: Costa Rica
Category: Hacking
Records Announced: 599,080
Sources:

Data: Email Addresses IP Addresses Messages Passwords Site Activity Usernames

Imported:
Records Imported: 599,110
Number of lines: 41,140,060
Size: 9.46 GB
Passwords: MyBB
Cracked: 39%

ACKO (Russian insurance company) 2023

In September 2023, the Russian insurance company ACKO (acko.ru) experienced a data breach. The breach involved the exposure of approximately 4 million lines of data from the user table in SQL format. Among the compromised data were phone numbers, full names, birth dates, email addresses, physical locations, passport numbers, and vehicle information, including VINs and registration details.

Date: Sep 2023
Domain: acko.ru
Country: Russia
Category: Finance & Payments
Records Announced: 4,773,517

Data: Birthdates Email Addresses Names Passports Phone Numbers Physical Locations Vehicle Information

Imported:
Records Imported: 3,919,247
Number of lines: 9,522,179
Size: 2.23 GB
Passwords: No

parkbench.com 2020

In 2020, Parkbench (parkbench.com), a platform providing real estate agents with exclusive neighborhood websites, experienced a data breach affecting approximately 235,000 users. Among the compromised data were names, email addresses, social media profiles, geographic locations, site activity, and passwords.

Date: 2020
Domain: parkbench.com
Category: Real Estate
Records Announced: 235,000

Data: Email Addresses Names Passwords Physical Locations Site Activity Social Profiles

Imported:
Records Imported: 149,509
Number of lines: 5,889
Size: 474.78 MB
Passwords: MD5 Salted, BCrypt
Cracked:

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo

Breach Intelligence