Breach Intelligence

3,151

Total breached databases

On October 18, 2024, the educational platform Super Teacher Worksheets, known for providing educational resources and worksheets for teachers, experienced a data breach. The breach reportedly involved approximately 1,137,837 lines of data. Among the compromised data were email addresses, geographic locations, usernames, site activities, and hashed passwords using bcrypt.
  • Data: Email Addresses Passwords Names Geographic Locations Usernames Site Activity
  • Records: 1,137,834
  • Lines: 1,137,836
  • Size: 321.88 MB
  • Passwords: BCrypt
  • Cracked: 0%
In 2015-09 the WiiU ISO's website was hacked and 457,333 user's data was breached and posted. You can now download the database below the password hashing algorithm is vB.
  • Data: Email Addresses IP Addresses Passwords Usernames
  • Records: 457,330
  • Lines: 457,330
  • Size: 47.85 MB
  • Passwords: vBulletin
  • Cracked: 34%
In 2018, a data breach occurred involving 263,236 records stored in a CSV format. The data included passwords that were hashed using SHA-1. The precise source of the data remains unspecified.
  • Data: The exact data fields compromised in the NovaFM 2021 breach are still under review. Updates will be published when confirmed.
  • Records: 261,947
  • Lines: 262,237
  • Size: 53 MB
  • Passwords: SHA-1
  • Cracked: 0%
In 2024, the Russian pharmacy chain Maksavit, known for its extensive presence across Russia, experienced a data breach. Reports indicate that approximately 1.2 million lines of data were compromised in the breach. Among the leaked data were email addresses, names, phone numbers, birthdates, gender, hashed passwords with login activity, and registration dates.
  • Date: 2024
  • Domain: maksavit.ru
  • Country: Russia
  • Category: Healthcare
  • Data: Email Addresses Passwords Names Phone Numbers Genders Site Activity Birthdates
  • Records: 832,000
  • Lines: 1,023,791
  • Size: 530.66 MB
  • Passwords: Unknown
In mid-2019, Vedantu, an Indian interactive online tutoring platform, allegedly suffered a data breach that exposed the personal information of 687,000 users. The leaked database, in JSON format, reportedly included email addresses, IP addresses, names, phone numbers, genders, and passwords stored as bcrypt hashes.
  • Data: Email Addresses Genders IP Addresses Languages Names Passwords Phone Numbers Site Activity Time Zones
  • Records: 4,906,774
  • Lines: 4,906,774
  • Size: 7.35 GB
  • Passwords: BCrypt
  • Cracked: 2%
In December 2012, the multiplayer online battle arena game known as Heroes of Newerth was hacked and over 8 million accounts extracted from the system. The compromised data included usernames, email addresses and passwords.
  • Data: Email Addresses Passwords Usernames
  • Records: 8,764,909
  • Lines: 8,764,960
  • Size: 314.05 MB
  • Passwords: vBulletin
  • Cracked: 66%
In late 2022, data allegedly taken from the Gemini crypto exchange was posted to a public hacking forum. The data consisted of email addresses and partial phone numbers, which Gemini later attributed to an incident at a third-party vendor (the vendor was not named).
  • Data: Email Addresses Phone Numbers
  • Records: 5,701,678
  • Lines: 5,701,677
  • Size: 254.02 MB
  • Passwords: No

Frequently Asked Questions

A data breach is unauthorized access to data (often involving account takeover, malware, or misconfigured infrastructure). A data leak is exposure of data due to mistakes like public cloud storage, open databases, or accidental publishing. A database dump is a packaged dataset that may come from a breach, leak, scraping, or aggregation.

Change passwords for any affected accounts immediately, prioritizing email, banking, and any account that shares the same password. Enable multi-factor authentication wherever possible. Monitor your accounts for suspicious activity and consider placing a fraud alert or credit freeze if financial data was exposed.

Start with containment and verification: confirm what data was exposed, identify the entry point, rotate credentials (especially SSO, VPN, email), and enforce MFA. Then investigate affected systems, notify stakeholders as required, and harden controls to prevent recurrence. A structured incident response plan helps keep the work measurable and compliant.

Dark web monitoring helps you spot exposure signals early — before stolen data is widely reused for account takeover or targeted attacks. Monitoring complements vulnerability management by revealing when attackers already have leverage. Pair it with continuous attack surface monitoring and strong Asset Discovery to reduce blind spots.

Not always. Some datasets are old, incomplete, or derived from third parties. However, any exposure increases risk because credentials and personal data can be reused indefinitely. Treat it as a priority signal: rotate credentials, enforce MFA, review suspicious logins, and audit the systems that could have produced the data.

SynScan helps you connect the dots between attack surface exposure, vulnerabilities, and breach signals so you can prioritize remediation and reduce the chance of repeat incidents.