DarkHive Breach Catalog

Runescape 2006
Breached Records: 129,591
In July 2016, RuneScape 2006, the popular online MMORPG, suffered a data breach exposing nearly 130,000 unique records containing usernames, IP addresses, and MD5 hashed and salted passwords. This incident highlights the critical need for robust cybersecurity measures to prevent unauthorized access and protect sensitive user information from breaches.
Leaked Data Types: Username, Password Hash, Salt, IP Address
Added on June 2, 2025

Divine Life Bamboos
Breached Records: 67,331
In January 2023, Divine Life Bamboos, an Indian e-commerce platform specializing in bamboo products, suffered a data breach exposing approximately 500,000 records containing around 67,000 unique email addresses, full names, phone numbers, genders, and dates of birth. This incident highlights the critical need for businesses to implement robust cybersecurity measures to protect sensitive customer information from unauthorized access. Proper safeguards are essential to prevent breaches like this and ensure the security of personal details.
Leaked Data Types: Email Address, Phone Number, First Name, Last Name, Gender, Birthday
Added on June 2, 2025

Yandex.ru
Breached Records: 1,186,552
In September 2014, Yandex.ru, Russia's largest search engine, suffered a data breach exposing over 1.2 million records. The exposed data contained approximately 1.187 million unique email addresses and plaintext passwords. This incident underscores the importance of implementing robust cybersecurity measures to prevent unauthorized access and safeguard sensitive user data.
Leaked Data Types: Email Address, Plaintext Password
Added on June 2, 2025

Cyber Matrix Solutions
Breached Records: 5,297
In April 2022, Cyber Matrix Solutions, an Indian IT services platform, suffered a data breach exposing approximately 5,300 unique records containing email addresses, phone numbers, usernames, and bcrypt hashed passwords. This incident underscores the critical importance of implementing robust cybersecurity measures to protect sensitive information like emails and passwords from unauthorized access. Proper cybersecurity measures are essential to prevent such breaches and safeguard customer data, highlighting how crucial it is to adopt strong protective strategies.
Leaked Data Types: Email Address, Phone Number, Password Hash, Username
Added on June 2, 2025

DACgift
Breached Records: 8,156
In October 2022, DACgift, an Indian online platform offering gifts, faced a data breach exposing over 8,100 unique records containing email addresses and full names. This incident underscores how critical it is for businesses to prioritize cybersecurity measures to protect customer information from misuse.
Leaked Data Types: Email Address, First Name, Last Name
Added on June 2, 2025

Amazon.CN
Breached Records: 132,840
In April 2011, Amazon.CN suffered a data breach exposing nearly 201,000 records. The data contained over 132,000 unique email addresses, usernames, and phone numbers. This incident underscores the importance of implementing robust cybersecurity measures to protect sensitive user data and prevent unauthorized access during breaches.
Leaked Data Types: Email Address, Username, Phone Number
Added on June 2, 2025

Wire and Wood Alpharetta
Breached Records: 103,234
In August 2018, Wire and Wood Alpharetta, a US-based platform promoting the Wire & Wood Songwriters Festival, suffered a data breach exposing over 127,000 records containing around 103,000 unique email addresses and plaintext passwords. The exposure of such sensitive personal information poses significant risks to individuals' privacy and could be exploited for identity theft or unauthorized access.
Leaked Data Types: Email Address, Plaintext Password
Added on June 2, 2025

ForceOnline
Breached Records: 831,101
In February 2018, ForceOnline, suffered a data breach exposing nearly 1 million records containing over 831,000 unique email addresses and plain text passwords. The exposure of sensitive user data highlights vulnerabilities in password security practices. This incident underscores the importance of implementing strong cybersecurity measures to safeguard personal information and prevent unauthorized access.
Leaked Data Types: Email Address, Plaintext Password
Added on May 30, 2025

LeakBase 16GB Log Collection by 1212123
Breached Records: 757,356
On March 8, 2024 a stealer log titled 16Gb Log Collection was posted on a well known hacking forum. The log exposed around 757,000 email addresses, as well as plaintext passwords, homepage URLs usernames, IP addresses, and system information on affected devices. This type of breach, stemming from infostealer malware, underscores the urgent need for proactive cybersecurity measures—including the use of password managers, antivirus protection, and routine system monitoring—to mitigate the risk of identity theft and further exploitation.
Leaked Data Types: Email Address, Plaintext Password, HomePage URL, Username, IP Address
Added on May 30, 2025

Ozon Marketplace
Breached Records: 457,777
In July 2020, the official online platform of Ozon, one of Russia's largest and most established e-commerce companies, suffered a data breach affecting 457,777 users. The compromised data included email addresses and plaintext passwords. This breach underscores the ongoing importance of robust cybersecurity practices to safeguard consumer information.
Leaked Data Types: Email Address, Plaintext Password
Added on May 30, 2025

ShowMe
Breached Records: 453,386
In August 2017, ShowMe, a U.S.-based educational platform that allows users to create and share interactive lessons—mainly via its iPad app—suffered a data breach affecting 453,000 users. The compromised data included email addresses and plaintext passwords. This breach underscores the importance of encrypting user credentials and implementing strong cybersecurity protocols to protect sensitive educational data.
Leaked Data Types: Email Address, Plaintext Password
Added on May 30, 2025

Dressup
Breached Records: 2,192,442
In August 2018, Dressup, a U.S.-based online gaming platform known for its collection of fashion-themed dress-up games aimed primarily at younger audiences, experienced a data breach that affected 2.19 million users. The compromised data included email addresses and plaintext passwords. This breach underscores the importance of implementing strong encryption and cybersecurity protocols, especially on platforms frequented by younger users.
Leaked Data Types: Email Address, Plaintext Password
Added on May 30, 2025

GumiBears
Breached Records: 14,599
In June 2022, Gumibears.com, a Chilean e-commerce platform specializing in chewable gummy vitamins and wellness products, suffered a data breach exposing approximately 15,000 unique records containing email addresses and full names. This incident underscores the importance of implementing strong cybersecurity measures to safeguard sensitive customer information from unauthorized access.
Leaked Data Types: Email Address, First Name, Last Name
Added on May 30, 2025

AnyWhere
Breached Records: 272,788
In July 2017, Anywhere.xxx, a U.S.-based adult entertainment website, suffered a data breach that affected approximately 272,788 users. The compromised data included email addresses and plaintext passwords. This breach highlights the critical importance of encrypting sensitive user data and implementing strong cybersecurity protocols to minimize risks and protect user privacy.
Leaked Data Types: Email Address, Plaintext Password
Added on May 30, 2025

HLTV
Breached Records: 414,238
In June 2016, HLTV, a leading Danish platform focused on Counter-Strike esports and known for its in-depth coverage of professional tournaments and match results, experienced a data breach that affected 414,000 users. The exposed information included usernames and plaintext passwords. This breach underscores the importance of encrypting sensitive user data and maintaining strong cybersecurity protocols, especially for platforms with large, active user bases.
Leaked Data Types: Username, Plaintext Password
Added on May 30, 2025

AarinFantasy
Breached Records: 222,597
In August 2017, AarinFantasy, a Malaysia-based online community focused on Boys' Love (BL) and yaoi content, experienced a data breach that affected approximately 222,597 users. The compromised information included email addresses and plaintext passwords. This incident underscores the necessity of proper encryption practices and robust cybersecurity measures to safeguard user privacy and prevent unauthorized access.
Leaked Data Types: Email Address, Plaintext Password
Added on May 30, 2025

LeakBase MacroDome Cloud 16Gb Logs by 0x20
Breached Records: 431,333
On June 23, 2024 a stealer log titled MacroDome Cloud 16GB Logs was posted on a popular hacking forum. The log contained over 431,000 email addresses, as well as passwords stored in plain text, homepage URLs, IP addresses, and system information of infected machines. This breach exemplifies the devastating impact of infostealer malware and reinforces the importance of practicing strong cybersecurity hygiene.
Leaked Data Types: Email Address, Plaintext Password, HomePage URL, Username, IP Address
Added on May 30, 2025

Sciax2
Breached Records: 221,451
Sometime between 2017 and 2018, Sciax2, an Italian online community and forum centered on technology, gaming, and development, experienced a data breach that impacted approximately 221,451 users. The compromised data included email addresses and plaintext passwords. This incident underscores the necessity of implementing robust encryption practices and proactive cybersecurity measures to protect user credentials and privacy.
Leaked Data Types: Email Address, Plaintext Password
Added on May 30, 2025

Limian (立免网)
Breached Records: 1,050,652
On October 2014, Limian (立免网), a Chinese platform offering free products through interactive campaigns, revealed a data breach exposing nearly 1.2 million user records. The exposed data contained around 1.051 million email addresses, as well as phone numbers, usernames, names, birthdays, genders, and bcrypt hashed passwords. This incident emphasizes the need for secure cybersecurity measures to prevent unauthorized access to sensitive data.
Leaked Data Types: Email Address, Phone Number, Password Hash, Username, First Name, Birthday, Gender
Added on May 30, 2025

LeakBase 6.5K logs by zinel94
Breached Records: 58,003
On February 2024 a stealer log titled 6500 Premium Logs on a well known hacking forum. The log exposed around 58003 email addresses, as well as plaintext passwords, homepage URLs, and system information on affected devices. This type of breach, stemming from infostealer malware, underscores the urgent need for proactive cybersecurity measures—including the use of password managers, antivirus protection, and routine system monitoring—to mitigate the risk of identity theft and further exploitation.
Leaked Data Types: Email Address, Username, IP Address, Credit Card, Plaintext Password, HomePage URL
Added on May 30, 2025