RentoMojo 2023

In April 2023, the Indian rental service RentoMojo suffered a data breach. The breach exposed over 2M unique email addresses along with names, phone, passport and Aadhaar numbers, genders, dates of birth, purchases and bcrypt password hashes.

• Date: Apr 15, 2023
• Domain: rentomojo.com
• Records Announced: 2,185,697
• Numer of lines: 253,443,125
• Size: 31.06 GB
• Data: Dates of birth, Email addresses, Genders, Government issued IDs, Names, Passport numbers, Passwords, Phone numbers, Purchases, Social media profiles
• Passwords: BCrypt
• Cracked:
• Imported:
• Links: haveibeenpwned.com

Not Acxiom 2020

In 2020, a corpus of data containing almost a quarter of a billion records spanning over 400 different fields was misattributed to database marketing company Acxiom and subsequently circulated within the hacking community. On review, Acxiom concluded that "the claims are indeed false and that the data, which has been readily available across multiple environments, does not come from Acxiom and is in no way the subject of an Acxiom breach". The data contained almost 52M unique email addresses.

• Date: Jun 21, 2020
• Country: United States
• Category: Data broker
• Records Announced: 51,730,831
• Numer of lines: 250,808,966
• Records Imported: 250,807,711
• Size: 229.29 GB
• Data: Email addresses, IP addresses, Names, Phone numbers, Physical addresses
• Passwords: No
• Imported:
• Links:
  • breachforums.st
  • haveibeenpwned.com
  • raidforums.com
  • troyhunt.com

LinkedIn 2012

In May 2016, LinkedIn had 164 million email addresses and passwords exposed. Originally hacked in 2012, the data remained out of sight until being offered for sale on a dark market site 4 years later. The passwords in the breach were stored as SHA1 hashes without salt, the vast majority of which were quickly cracked in the days following the release of the data.

• Date: May 5, 2012
• Domain: linkedin.com
• Category: Social
• Records Announced: 241,828,770
• Numer of lines: 250,758,057
• Records Imported: 250,050,685
• Size: 10.58 GB
• Data: Email addresses, Passwords
• Passwords: SHA1
• Cracked: 24%
• Imported:
• Links:
  • breachforums.st
  • hashmob.net
  • haveibeenpwned.com
  • raidforums.com

Acuity 2019

In 2019, the insurance company acuity suffered a data breach that exposed 241.8M. The data was published in raidforums by "Crazyoldfart" in 2021. The data contains US household and personal information, including Full names, Addresses, Phone numbers, Occupations, Ethnicities and more. The "data dictionary" is also included in the archive and it details what each field of the data stands for. Some samples are provided in the Spoiler below, so you can see what you are getting.

• Date: 2019
• Domain: acuity.com
• Category: Insurance
• Records Announced: 241,767,915
• Numer of lines: 241,767,916
• Records Imported: 241,767,915
• Size: 63.68 GB
• Data: Full names, Addresses, Phone numbers, Occupations, Ethnicities
• Passwords: No
• Imported:
• Links:
  • breachforums.st
  • troyhunt.com

Intelx Whois Scrape 2021

Somewhere in 2021, the user pompompurin scrapper the Whois data from Intelx.io website and published in forums with the following description:
- Whois data from 2012 to 2021.
- This is 99% of the Whois data that is currently in Intelx (as of a few weeks ago).
- Data over 280 GB is fully uncompressed.
- Approximately 62,390,755 unique email addresses (excluding those protected by privacy)

• Date: 2021
• Domain: intelx.io
• Category: Whois
• Records Announced: 62,390,755
• Numer of lines: 227,387,856
• Records Imported: 227,272,887
• Size: 157.47 GB
• Data: Email Addresses, Phone Numbers, Physical Addresses, Whois Information
• Passwords: No
• Imported:
• Links:
  • inteltechniques.com
  • leakbase.io