Breach Intelligence

2,849

Total breached databases

Mr. Green Gaming 2024

Mr. Green Gaming 2024

In March 2024, Mr. Green Gaming, an online games community, suffered a data breach that exposed approximately 27,000 user records. The incident, which was acknowledged on their Discord server, compromised data including email addresses, IP addresses, usernames, geographic locations, and dates of birth.
  • Data: Birthdates Email Addresses Geographic Locations IP Addresses Usernames
  • Imported:
  • Passwords: No
The Heritage Foundation 2024

The Heritage Foundation 2024

In July 2024, hacktivists published almost 2GB of data taken from The Heritage Foundation and their media arm, The Daily Signal. The data contained 72k unique email addresses, primarily used for commenting on articles (along with names, IP addresses and the comments left) and by content contributors (along with usernames and passwords stored as either MD5 or phpass hashes).
  • Data: Email Addresses IP Addresses Names Passwords Usernames
  • Imported:
  • Passwords: MD5
  • Cracked: 0%
Fajna Fabryka 2024

Fajna Fabryka 2024

On July 21, 2024, the online store Fajna Fabryka, known for offering a variety of home and garden products and personalized gifts, suffered a data breach. The breach resulted in the exposure of over 85,000 lines of data. Some of the leaked data includes email addresses, passwords, names, and site activity.
  • Date: Jul 21, 2024
  • Domain: fajnafabryka.pl
  • Country: Poland
  • Category: E-commerce & Retail
  • Records Announced: 85,645
  • Data: Email Addresses Passwords Names Site Activity
  • Imported:
  • Passwords: Unknown
Ubook 2024

Ubook 2024

In July 2024, 700k unique email addresses from the audiobook platform Ubook were posted to a popular hacking forum. Allegedly scraped from the service, the data appears to be sourced from the Ubook Exchange (UBX) and also includes names, genders, dates of birth and links to profile photos.
  • Data: Birthdates Email Addresses Genders Names Profile Photos
  • Imported:
  • Passwords: No
DimeCuba 2024

DimeCuba 2024

On August 26, 2024, the online platform DimeCuba, known for offering services such as mobile phone recharges, international calls, and messaging to the Cuban community, experienced a data breach. Reports suggest that the breach was executed by SILKFIN AGENCY and resulted in the compromise of various records, including over 1 million SMS records, 100,000 email records, and more than 1 million transaction records. Among the compromised data were phone numbers, email addresses, transaction details, card SIM information, and admin and reseller data.
  • Date: Aug 26, 2024
  • Domain: dimecuba.com
  • Threat Actor: SILKFIN AGENCY
  • Country: Cuba
  • Category: Telecommunications
  • Records Announced: 84,633
  • Data: Email Addresses Passwords Names Phone Numbers Geographic Locations Credit Card Information IP Addresses Site Activity
  • Imported:
  • Passwords: Hashed
  • Cracked: 0%
Omega-elevators.com 2023

Omega-elevators.com 2023

In June 2023, Omega Elevators, an Indian elevator manufacturing and maintenance company, allegedly suffered a data breach. Reports suggest the incident was carried out by a threat actor known as "Sumo" and disclosed on the LeakBase forum. Approximately 15,000 records were allegedly exposed, comprising employee payroll data (names and IFSC bank routing codes) and Android field-technician app logs containing device information such as device model, manufacturer, operating system version, app version, and obfuscated device identifiers (IMEI/UUID).
  • Date: Jun 2023
  • Domain: omega-elevators.com
  • Threat Actor: Sumo
  • Country: India
  • Category: Industry
  • Records Announced: 15,000
  • Data: Usernames Device Information
  • Imported:
  • Number of lines: 14,354,828
  • Size: 2.85 GB
  • Passwords: ?
Spoutible 2024

Spoutible 2024

In January 2024, Spoutible had 207k records scraped from a misconfigured API that inadvertently returned excessive personal information. The data included names, usernames, email and IP addresses, phone numbers (where provided to the platform), genders and bcrypt password hashes. The incident also exposed 2FA secrets and backup codes along with password reset tokens.
  • Data: Email Addresses Genders IP Addresses Names Passwords Phone Numbers Usernames
  • Imported:
  • Passwords: BCrypt
  • Cracked: 0%

Frequently Asked Questions

A data breach is unauthorized access to data (often involving account takeover, malware, or misconfigured infrastructure). A data leak is exposure of data due to mistakes like public cloud storage, open databases, or accidental publishing. A database dump is a packaged dataset that may come from a breach, leak, scraping, or aggregation.

Change passwords for any affected accounts immediately, prioritizing email, banking, and any account that shares the same password. Enable multi-factor authentication wherever possible. Monitor your accounts for suspicious activity and consider placing a fraud alert or credit freeze if financial data was exposed.

Start with containment and verification: confirm what data was exposed, identify the entry point, rotate credentials (especially SSO, VPN, email), and enforce MFA. Then investigate affected systems, notify stakeholders as required, and harden controls to prevent recurrence. A structured incident response plan helps keep the work measurable and compliant.

Dark web monitoring helps you spot exposure signals early — before stolen data is widely reused for account takeover or targeted attacks. Monitoring complements vulnerability management by revealing when attackers already have leverage. Pair it with continuous attack surface monitoring and strong Asset Discovery to reduce blind spots.

Not always. Some datasets are old, incomplete, or derived from third parties. However, any exposure increases risk because credentials and personal data can be reused indefinitely. Treat it as a priority signal: rotate credentials, enforce MFA, review suspicious logins, and audit the systems that could have produced the data.

SynScan helps you connect the dots between attack surface exposure, vulnerabilities, and breach signals so you can prioritize remediation and reduce the chance of repeat incidents.