In mid-2012, the true-time strategy recreation War Inc. suffered a knowledge breach. The attack resulted within the exposure of over 1 million accounts together with usernames, e-mail addresses and salted MD5 hashes of passwords. In November 2015, the forum software program maker vBulletin suffered a severe information breach. The assault lead to the discharge of both discussion board consumer and customer accounts totalling virtually 519k data. The breach included email addresses, start dates, safety questions and answers for patrons and salted hashes of passwords for each sources. In June 2020, the Brazilian fund elevating service Vakinha suffered a knowledge breach which impacted virtually four.eight million members. In September 2016, knowledge was allegedly obtained from the Chinese web site often known as uuu9.com and contained 7.5M accounts.
The knowledge was subsequently posted to a preferred hacking forum. In early 2013, tumblr suffered an information breach which resulted in the exposure of over 65 million accounts. The knowledge was later put up on the market on a dark market website and included e mail addresses and passwords saved as salted SHA1 hashes.
The incident resulted in the publicity of 858k unique e mail addresses across customer records and newsletter subscribers. Additional impacted information included names, bodily addresses, cellphone numbers and buy histories. In roughly 2017, the web site for Russian audio system in America known as Russian America suffered a data breach. The incident uncovered 183k unique records together with names, e mail addresses, phone numbers and passwords stored in both plain text and as MD5 hashes. Russian America was contacted in regards to the breach however didn’t respond. In July 2016, a tweet was posted with a link to an alleged data breach of BlueSnap, a world payment gateway and merchant account supplier.
In May 2018, the website for the ticket distribution service Ticketfly was defaced by an attacker and was subsequently taken offline. The attacker allegedly requested a ransom to share details of the vulnerability with Ticketfly however did not obtain a reply and subsequently posted the breached information on-line to a publicly accessible location. The knowledge included over 26 million distinctive email addresses together with names, physical addresses and cellphone numbers. In December 2011, China’s largest on-line forum often known as Tianya was hacked and tens of hundreds of thousands of accounts have been obtained by the attacker. The leaked information included names, usernames and email addresses. In February 2020, the affiliate marketing community Tamodo suffered a data breach which was subsequently shared on a preferred hacking discussion board. The incident uncovered almost 500k accounts together with names, e mail addresses, dates of start and passwords stored as bcrypt hashes.
The knowledge contained 324k fee data throughout 105k unique email addresses and included personal attributes corresponding to name, home address and phone quantity. The knowledge was verified with multiple Have I Been Pwned subscribers who confirmed it also contained valid transactions, partial bank card numbers, expiry dates and CVVs. A full investigation of the info and statement by Regpack is detailed in the post titled Someone just lost 324k cost records, full with CVVs. In roughly November 2016, the search engine optimisation administration firm RankWatch exposed a Mongo DB with no password publicly whereupon their data was exfiltrated and posted to an online discussion board.
The supply knowledge contained IP and e-mail addresses, usernames and salted MD5 hashes. In January 2020, the travel app creator Ulmon suffered a data breach. The service had nearly 1.3M records with 777k unique email addresses, names, passwords saved as bcrypt hashes and in some cases, social media profile IDs, telephone numbers and bios.
The information was subsequently bought then redistributed extensively via hacking boards. In August 2019, a data breach from the Spanish on-line pharmacy Promofarma appeared for sale on a dark web marketplace.
In April 2017, the vBulletin forum for the Underworld Empire sport suffered a data breach that exposed 429k accounts. The data was then posted to a hacking forum in mid-February 2018 where it was made out there to download.
The knowledge contained 7.four million distinctive email addresses along with names, employers, cellphone numbers and job titles in a desk called “us_emails”. When contacted and suggested of the incident, RankWatch wouldn’t reveal the aim of the info, the place it had been acquired from and whether or not the info house owners had consented to its assortment. The forum which originally posted the info passion.com review explained it as being “in the same vein as the modbsolutions leak”, a big record of company data allegedly used for spam functions. In 2019, on-line market for buying and selling stickers, cards, toys, and other collectibles Quidd suffered an information breach. The breach exposed nearly 4 million users’ email addresses, usernames and passwords stored as bcrypt hashes.
The data in the breach accommodates e-mail addresses and consumer names. In early 2016, the discussion board for the uTorrent BitTorrent shopper suffered an information breach which came to light later in the yr. The database from the IP.Board primarily based forum contained 395k accounts including usernames, e-mail addresses and MD5 password hashes without a salt. In August 2016, the Unreal Engine Forum suffered a knowledge breach, allegedly due to a SQL injection vulnerability in vBulletin. The assault resulted in the exposure of 530k accounts together with usernames, email addresses and salted MD5 hashes of passwords.
Tamodo failed to respond to multiple attempts to report the breach by way of revealed communication channels. In July 2018, the huge multiplayer on-line game Stronghold Kingdoms suffered an information breach. Almost 5.2 million accounts have been impacted by the incident which exposed emails addresses, usernames and passwords saved as salted SHA-1 hashes. In February 2020, the net retailer for client electronics wraps Slickwraps suffered a data breach.