In January 2019, a large collection of credential stuffing lists (combinations of email addresses and passwords used to hijack accounts on other services) was discovered being distributed on a popular hacking forum. The data contained almost 2.7
billion records including 773 million unique email addresses alongside passwords those addresses had used on other breached services. Full details on the incident and how to search the breached passwords are provided in the blog post
The 773 Million Record "Collection #1" Data Breach.
Fields count statistics
Numbers may not be precise, a precision threshold of 100 is used to determine if a field is unique.
password.plain top values
Only the top 100 values are displayed in the chart.
Values with less than 100 occurrences are not displayed.