Breach Intelligence

2,843

Total breached databases

Nevada 2018 Voter 2018

Nevada 2018 Voter 2018

In October 2018 I decided I would require every database I could with Voter's informations this was in part achieved by gaining access to the state's official SSH / SFTP servers and downloading the data. Some data was crowdfunded by users and some was obtained by me with the aforementioned methods.
  • Date: Oct 2018
  • Domain: nevada.gov
  • Country: United States
  • Category: Government
  • Records Announced: 1,743,937
  • Source: dehashed.com
  • Data: Birthdates Financial Information Genders Government IDs Names Phone Numbers Physical Locations Political Affiliation
  • Imported:
  • Passwords: No
Zadig & Voltaire 2023

Zadig & Voltaire 2023

In June 2024, a data brach sourced from French fashion brand Zadig & Voltaire was publicly posted to a popular hacking forum. The data included names, email and physical addresses, phone numbers and genders. When contacted about the incident, Zadig & Voltaire advised the incident had occurred more than 6 months ago and that "all measures were taken quickly".
  • Data: Email Addresses Genders Names Phone Numbers Physical Locations
  • Imported:
  • Passwords: No

Colony Of Gamers 2015

At this time, no official description is available for the Colony Of Gamers 2015 incident. This record remains published to ensure transparency. Once imported, you will be able to check if your data was involved. For now, you can review other breaches to see if your information appears there.

  • Data: At present, the information about what data was leaked in the Colony Of Gamers 2015 breach remains unavailable. Further updates will follow.
  • Imported:
  • Passwords: MD5 Salted
  • Cracked: 0%
Oklahoma 2018 Voter 2018

Oklahoma 2018 Voter 2018

In October 2018 I decided I would require every database I could with Voter's informations this was in part achieved by gaining access to the state's official SSH / SFTP servers and downloading the data. Some data was crowdfunded by users and some was obtained by me with the aforementioned methods.
  • Date: Oct 2018
  • Domain: oklahoma.gov
  • Country: United States
  • Category: Government
  • Records Announced: 2,092,413
  • Source: dehashed.com
  • Data: Birthdates Genders Government IDs Names Physical Locations Political Affiliation
  • Imported:
  • Passwords: No
QuestApp.in 2024

QuestApp.in 2024

In April 2024, the Indian digital learning platform Quest App (https://questapp.in/) was hacked by @DevEye, which then published this data on a popular hacking forum. The leak includes over 694k users, contains 522k unique email addresses, dates of birth, genders, marital statuses, names, phone numbers and passwords stored as MD5 and bcrypt hashes.
  • Date: Apr 2024
  • Domain: questapp.in
  • Threat Actor: DevEye
  • Country: India
  • Category: Education
  • Records Announced: 694,865
  • Data: Birthdates Email Addresses Genders Marital Statuses Names Passwords Phone Numbers Site Activity
  • Imported:
  • Passwords: BCrypt, MD5
  • Cracked: 0%

GamesCampus 2013

There is no official description for the GamesCampus 2013 data breach at this time. However, this record will allow future verification once the breach is processed. For now, you can use our search tool to see if your personal information appears in other breaches.

  • Data: The specific records exposed in the GamesCampus 2013 breach have not yet been identified. We will update this section with details when they are confirmed.
  • Imported:
  • Passwords: IPB, MD5(Wordpress)
  • Cracked: 0%
Wyoming 2018 Voter 2018

Wyoming 2018 Voter 2018

In October 2018 I decided I would require every database I could with Voter's informations this was in part achieved by gaining access to the state's official SSH / SFTP servers and downloading the data. Some data was crowdfunded by users and some was obtained by me with the aforementioned methods.
  • Date: Oct 2018
  • Domain: wyo.gov
  • Country: United States
  • Category: Government
  • Records Announced: 272,813
  • Data: Birthdates Genders Government IDs Names Physical Locations Political Affiliation
  • Imported:
  • Passwords: No

Frequently Asked Questions

A data breach is unauthorized access to data (often involving account takeover, malware, or misconfigured infrastructure). A data leak is exposure of data due to mistakes like public cloud storage, open databases, or accidental publishing. A database dump is a packaged dataset that may come from a breach, leak, scraping, or aggregation.

Change passwords for any affected accounts immediately, prioritizing email, banking, and any account that shares the same password. Enable multi-factor authentication wherever possible. Monitor your accounts for suspicious activity and consider placing a fraud alert or credit freeze if financial data was exposed.

Start with containment and verification: confirm what data was exposed, identify the entry point, rotate credentials (especially SSO, VPN, email), and enforce MFA. Then investigate affected systems, notify stakeholders as required, and harden controls to prevent recurrence. A structured incident response plan helps keep the work measurable and compliant.

Dark web monitoring helps you spot exposure signals early — before stolen data is widely reused for account takeover or targeted attacks. Monitoring complements vulnerability management by revealing when attackers already have leverage. Pair it with continuous attack surface monitoring and strong Asset Discovery to reduce blind spots.

Not always. Some datasets are old, incomplete, or derived from third parties. However, any exposure increases risk because credentials and personal data can be reused indefinitely. Treat it as a priority signal: rotate credentials, enforce MFA, review suspicious logins, and audit the systems that could have produced the data.

SynScan helps you connect the dots between attack surface exposure, vulnerabilities, and breach signals so you can prioritize remediation and reduce the chance of repeat incidents.