Breach Intelligence

2,852

Total breached databases

Hostmonster.com 2018

Hostmonster.com 2018

In 2018, HostMonster, a web hosting provider offering services such as shared hosting, VPS hosting, and dedicated server hosting, experienced a data breach. The incident reportedly affected 100,955 users, with a total data size of 332.92 MB. Among the leaked information were email addresses, passwords, names, IP addresses, birthdates, usernames, social profiles, and site activity details.
  • Data: Email Addresses Passwords Names IP Addresses Birthdates Usernames Social Profiles Site Activity
  • Records: 100,954
  • Lines: 831,597
  • Size: 332.92 MB
  • Passwords: vBulletin
  • Cracked: 90%
EmuParadise 2018

EmuParadise 2018

In April 2018, Emuparadise, a site describing itself as the "biggest retro gaming website on earth," allegedly suffered a data breach affecting its vBulletin forum. The incident reportedly exposed 1.1 million email addresses, usernames, IP addresses, and passwords stored as salted MD5 hashes.
  • Data: Email Addresses IP Addresses Passwords Usernames
  • Records: 1,128,980
  • Lines: 1,128,980
  • Size: 119.29 MB
  • Passwords: vBulletin
  • Cracked: 76%
Wongnai 2020

Wongnai 2020

In October 2020, 17 previously undisclosed data breaches were put up for sale, including one affecting Wongnai, a Thai service for finding restaurants, hotels, and attractions. The breach reportedly exposed nearly 4 million unique customer records. Among the compromised data were names, phone numbers, social media profiles, and passwords stored as MD5 hashes.
  • Data: Birthdates Email Addresses Geographic Locations IP Addresses Names Passwords Phone Numbers Social Profiles
  • Records: 4,298,301
  • Lines: 4,298,533
  • Size: 2.86 GB
  • Passwords: MD5
  • Cracked: 0%
LenDenClub 2023

LenDenClub 2023

In December 2023, the P2P lending platform LenDenClub in India experienced a data breach. Reports suggest that the breach affected approximately 22 million users. Among the compromised data were unique email addresses, dates of birth, genders, marital statuses, names, occupations, phone numbers, physical addresses, religions, spoken languages, and unknown hash type passwords.
  • Data: Email Addresses Passwords Names Phone Numbers Physical Locations Genders Marital Statuses Religions Birthdates Job Information Site Activity Languages Device Information
  • Records: 22,284,018
  • Lines: 22,260,023
  • Size: 7.71 GB
  • Passwords: Unknown
Disqus 2012

Disqus 2012

In July 2012, Disqus, a blog commenting service, allegedly suffered a data breach that exposed over 17.5 million unique email addresses and usernames. For users who registered directly with Disqus, passwords were stored as salted SHA-1 hashes, while those logging in via social providers had only references to their external accounts exposed.
  • Data: Email Addresses Passwords Usernames
  • Records: 27,841,540
  • Lines: 27,839,789
  • Size: 3.6 GB
  • Passwords: SHA-1 Salted
  • Cracked: 0%
XPG (XPGameSaves) 2016

XPG (XPGameSaves) 2016

In approximately early 2016, the gaming website Xpgamesaves (XPG) suffered a data breach resulting in the exposure of 890k unique user records. The data contained email and IP addresses, usernames and salted MD5 hashes of passwords. The site was previously reported as compromised on the Vigilante.pw breached database directory. This data was provided by security researcher and data analyst, Adam Davies.
  • Data: Email Addresses IP Addresses Passwords Usernames
  • Records: 3,052
  • Lines: 3,055
  • Size: 270.5 KB
  • Passwords: MyBB
  • Cracked: 78%
hackforums.net 2011

hackforums.net 2011

In June 2011, the hacktivist group known as "LulzSec" leaked one final large data breach they titled "50 days of lulz". The compromised data came from sources such as AT&T, Battlefield Heroes and the hackforums.net website. The leaked Hack Forums data included credentials and personal information of nearly 200,000 registered forum users.
  • Data: Birthdates Email Addresses IP Addresses Languages Passwords Site Activity Social Profiles Time Zones Usernames Websites
  • Records: 191,540
  • Lines: 191,636
  • Size: 111.02 MB
  • Passwords: MyBB
  • Cracked: 67%

Frequently Asked Questions

A data breach is unauthorized access to data (often involving account takeover, malware, or misconfigured infrastructure). A data leak is exposure of data due to mistakes like public cloud storage, open databases, or accidental publishing. A database dump is a packaged dataset that may come from a breach, leak, scraping, or aggregation.

Change passwords for any affected accounts immediately, prioritizing email, banking, and any account that shares the same password. Enable multi-factor authentication wherever possible. Monitor your accounts for suspicious activity and consider placing a fraud alert or credit freeze if financial data was exposed.

Start with containment and verification: confirm what data was exposed, identify the entry point, rotate credentials (especially SSO, VPN, email), and enforce MFA. Then investigate affected systems, notify stakeholders as required, and harden controls to prevent recurrence. A structured incident response plan helps keep the work measurable and compliant.

Dark web monitoring helps you spot exposure signals early — before stolen data is widely reused for account takeover or targeted attacks. Monitoring complements vulnerability management by revealing when attackers already have leverage. Pair it with continuous attack surface monitoring and strong Asset Discovery to reduce blind spots.

Not always. Some datasets are old, incomplete, or derived from third parties. However, any exposure increases risk because credentials and personal data can be reused indefinitely. Treat it as a priority signal: rotate credentials, enforce MFA, review suspicious logins, and audit the systems that could have produced the data.

SynScan helps you connect the dots between attack surface exposure, vulnerabilities, and breach signals so you can prioritize remediation and reduce the chance of repeat incidents.