Breach Intelligence

2,841

Total breached databases

?

Xakepok.org 2008

We do not yet have a full description for the Xakepok.org 2008 breach. Our goal is to track incidents like this so that users can stay informed. You will be able to check if your information is included when this breach is processed. Until then, you can check other breaches in our database.

  • Data: It is not yet known which data types were exposed in the Xakepok.org 2008 incident. This page will be updated as more details are verified.
  • Imported:
  • Number of lines: 21,723
  • Size: 19.29 MB
  • Passwords: ?
Fridae 2014

Fridae 2014

In May 2014, over 25,000 user accounts were breached from the Asian lesbian, gay, bisexual and transgender website known as "Fridae". The attack which was announced on Twitter appears to have been orchestrated by Deletesec who claim that "Digital weapons shall annihilate all secrecy within governments and corporations". The exposed data included password stored in plain text.
  • Data: Email Addresses Passwords Site Activity Usernames
  • Imported:
  • Passwords: Plaintext
Naughty America 2016

Naughty America 2016

Sensitive
In March 2016, the adult website Naughty America was hacked and the data consequently sold online. The breach included data from numerous systems with various personal identity attributes, the largest of which had passwords stored as easily crackable MD5 hashes. There were 1.4 million unique email addresses in the breach.
  • Data: Birthdates Email Addresses IP Addresses Passwords Site Activity Usernames
  • Imported:
  • Number of lines: 3,890,928
  • Size: 3.71 GB
  • Passwords: MD5
  • Cracked: 25%
Interbank 2024

Interbank 2024

Sensitive
On October 30, 2024, Interbank, a Peruvian financial services provider, experienced a data breach that exposed the sensitive information of over 3 million customers. Among the compromised data were names, DNI (National Identification Document) numbers, account IDs, birthdates, addresses, phone numbers, email addresses, passwords, IP addresses, genders, account balances, credit card numbers with CVV and expiry dates, and details of bank transactions.
  • Date: Oct 30, 2024
  • Domain: interbank.pe
  • Threat Actor: m0riarty
  • Country: Peru
  • Category: Finance & Payments
  • Records Announced: 2,586,560
  • Source: databreach.com
  • Data: Email Addresses Passwords Names Phone Numbers Physical Locations Credit Card Information Bank Account Information Balances Genders IP Addresses Birthdates Nationalities
  • Imported:
  • Passwords: Unknown
Fur Affinity 2016

Fur Affinity 2016

In May 2016, the Fur Affinity website for people with an interest in anthropomorphic animal characters (also known as "furries") was hacked. The attack exposed 1.2M email addresses (many accounts had a different "first" and "last" email against them) and hashed passwords.
  • Data: Email Addresses Passwords Usernames
  • Imported:
  • Passwords: Hashed
  • Cracked: 0%

Lawyers Order of Rome 2019

In May 2019, the Lawyers Order of Rome suffered a data breach by a group claiming to be Anonymous Italy. Data on tens of thousands of Roman lawyers was taken from the breached system and redistributed online. The data included contact information, email addresses and email messages themselves encompassing tens of thousands of unique email addresses.
  • Date: May 2019
  • Category: Professional & Corporate
  • Data: The specific records exposed in the Lawyers Order of Rome 2019 breach have not yet been identified. We will update this section with details when they are confirmed.
  • Imported:
  • Number of lines: 41,941
  • Size: 7.35 MB
  • Passwords: ?
business-gazeta.ru (БИЗНЕС Online) 2020

business-gazeta.ru (БИЗНЕС Online) 2020

In approximately December 2020, the Russian News website business-gazeta.ru (БИЗНЕС Online) suffered a data breach that impacted 64.5k members. The breach included Email addresses, Full names, Phone numbers, Usernames and Passwords stored as Bcrypt ($2a$07) hashes.
  • Data: Email Addresses Names Passwords Phone Numbers Usernames
  • Imported:
  • Number of lines: 15,014,437
  • Size: 1.69 GB
  • Passwords: BCrypt
  • Cracked: 0%

Frequently Asked Questions

A data breach is unauthorized access to data (often involving account takeover, malware, or misconfigured infrastructure). A data leak is exposure of data due to mistakes like public cloud storage, open databases, or accidental publishing. A database dump is a packaged dataset that may come from a breach, leak, scraping, or aggregation.

Change passwords for any affected accounts immediately, prioritizing email, banking, and any account that shares the same password. Enable multi-factor authentication wherever possible. Monitor your accounts for suspicious activity and consider placing a fraud alert or credit freeze if financial data was exposed.

Start with containment and verification: confirm what data was exposed, identify the entry point, rotate credentials (especially SSO, VPN, email), and enforce MFA. Then investigate affected systems, notify stakeholders as required, and harden controls to prevent recurrence. A structured incident response plan helps keep the work measurable and compliant.

Dark web monitoring helps you spot exposure signals early — before stolen data is widely reused for account takeover or targeted attacks. Monitoring complements vulnerability management by revealing when attackers already have leverage. Pair it with continuous attack surface monitoring and strong Asset Discovery to reduce blind spots.

Not always. Some datasets are old, incomplete, or derived from third parties. However, any exposure increases risk because credentials and personal data can be reused indefinitely. Treat it as a priority signal: rotate credentials, enforce MFA, review suspicious logins, and audit the systems that could have produced the data.

SynScan helps you connect the dots between attack surface exposure, vulnerabilities, and breach signals so you can prioritize remediation and reduce the chance of repeat incidents.