In July 2022, the immigration status service Trackitt suffered a data breach that impacted 421k users. The breach included Usernames, Email addresses, IP Addresses and Passwords stored as SHA1 hashes. The breach occurred due to Trackitt leaving a directory exposed where they would upload backups. The leak was credited to @pw2h.