Breach Intelligence

2,693

Total breached databases

Search breaches

In September 2024, VK (VKontakte), one of the largest social networking platforms in Russia, suffered a massive data breach. This breach exposed the personal information of hundreds of millions of users, including basic identification and location details.
  • Date: Sep 2024
  • Domain: vk.ru
  • Country: Russia
  • Category: Social Media & Communication
  • Numer of lines: 390,425,719
  • Records Imported: 390,423,055
  • Size: 27.66 GB
  • Data: Genders, Geographic Locations, Government IDs, Names, Profile Photos
  • Passwords: No
  • Imported:
This collection is part of a larger series of data dumps, including Collections #1 through #5, which compiled email addresses and passwords from thousands of sources, from previously known data breaches and some new alleged breaches. Collection #1 alone contained about 2.7 billion records, including 1.2 billion unique email and password combinations, 773 million unique email addresses, and 21 million unique plaintext passwords. Additional collections, named Collections #2 through #5, along with "AP MYR&ZABUGOR #2" and "ANTIPUBLIC #1," were also discovered, significantly adding to the scope of compromised data​.
  • Date: 2016
  • Category: Compilations & Combo lists
  • Numer of lines: 387,657,988
  • Records Imported: 387,652,186
  • Size: 11.48 GB
  • Data: Email Addresses, Passwords
  • Passwords: Plaintext
  • Imported:
  • Source: recordedfuture.com
Somewhere in 2021, the user pompompurin scrapped the Whois data from Intelx.io website and published the results in a hacking forum with the following description:
- Whois data from 2012 to 2021.
- This is 99% of the Whois data that is currently in Intelx (as of a few weeks ago).
- Data over 280 GB is fully uncompressed.
- Approximately 62,390,755 unique email addresses (excluding those protected by privacy).
  • Date: 2021
  • Domain: intelx.io
  • Threat Actor: pompompurin
  • Category: Technology
  • Records Announced: 62,390,755
  • Numer of lines: 373,277,474
  • Records Imported: 227,272,887
  • Size: 270.1 GB
  • Data: Email Addresses, Phone Numbers, Physical Locations, Site Activity
  • Passwords: No
  • Imported:
  • Source: inteltechniques.com
In May 2024, 2B rows of data with 361M unique email addresses were collated from malicious Telegram channels. The data contained 122GB across 1.7k files with email addresses, usernames, passwords and in many cases, the website they were entered into. The data appears to have been sourced from a combination of existing combolists and info stealer malware.
  • Date: May 28, 2024
  • Category: Compilations & Combo lists
  • Records Announced: 361,468,099
  • Data: Email Addresses, Passwords, Usernames
  • Passwords: Unknown
  • Imported:
  • Source: haveibeenpwned.com
In approximately 2008, MySpace suffered a data breach that exposed almost 360 million accounts. In May 2016 the data was offered up for sale on the "Real Deal" dark market website and included email addresses, usernames and SHA1 hashes of the first 10 characters of the password converted to lowercase and stored without a salt. The exact breach date is unknown, but analysis of the data suggests it was 8 years before being made public.
  • Date: Jul 2008
  • Domain: myspace.com
  • Category: Social Media & Communication
  • Records Announced: 359,420,698
  • Numer of lines: 360,213,049
  • Records Imported: 359,443,105
  • Size: 32.9 GB
  • Data: Email Addresses, Passwords, Usernames
  • Passwords: SHA-1, SHA-1 Salted
  • Cracked: 46%
  • Imported:
  • Sources: