DarkHive Breach Catalog
Goodmoodplay
Breached Records: 1,501
On March 2, 2024, the Curaçao-based online gaming and entertainment platform Goodmoodplay experienced a data breach affecting 1.6 million users. The compromised information included email addresses, names, and passwords. This incident highlights the importance of robust cybersecurity measures, particularly for platforms managing sensitive user data. Implementing strong encryption and proactive security protocols is essential to safeguard user information and maintain trust.
Leaked Data Types: Email Address, First Name, Last Name, Password Hash
Added on February 18, 2025
Zaymer
Breached Records: 14,417,934
In March 2024, the Russian online microfinance service Zaymer.ru, which specializes in short-term loans, experienced a data breach impacting 16.8 million users. The compromised data included names, genders, birthdates, phone numbers, and locations. This incident highlights the critical importance of robust cybersecurity measures, particularly for financial services handling sensitive personal information. Protecting such data with advanced security protocols and regular system audits is essential to maintain user privacy and prevent unauthorized access.
Leaked Data Types: First Name, Last Name, Gender, Birthday, Phone Number
Added on February 18, 2025
MakeOver 22
Breached Records: 5,948
In May 2024, the Saudi Arabian online cosmetics shopping website, MakeOver 22, experienced a data breach that affected nearly 7,000 users. The compromised data included email addresses, phone numbers, full names, and geographical locations. This incident underscores the importance of strong cybersecurity measures to protect sensitive customer information and prevent unauthorized access.
Leaked Data Types: Email Address, Phone Number, First Name, Last Name
Added on February 17, 2025
River
Breached Records: 11,013
In October 2024, the U.S.-based cryptocurrency and financial services platform, River, experienced a data breach affecting 11,000 users. The exposed information included email addresses, full names, phone numbers, geographic locations, and dates. This incident highlights the critical need for robust cybersecurity measures to protect sensitive user data and prevent unauthorized access.
Leaked Data Types: Email Address, First Name, Last Name, Phone Number
Added on February 17, 2025
Kassy.ru
Breached Records: 283,826
In April 2023, the Russian ticket booking platform, Kassy.ru, suffered a data breach that exposed 500,000 rows of user data. The compromised data included email addresses, phone numbers, full names, and dates. Users affected by this breach should remain vigilant for phishing attempts, update their passwords, and monitor their accounts for any suspicious activity.
Leaked Data Types: Email Address, Phone Number, First Name, Last Name
Added on February 17, 2025
Public Citizen
Breached Records: 53,150
Around March 2022, the American nonprofit consumer advocacy organization PublicCitizen (citizen.org) experienced a data breach due to an SQL Injection vulnerability. The exposed data included email addresses, full names, home addresses, and IP addresses, impacting a total of 53,200 users. This incident highlights the importance of robust cybersecurity measures, including secure coding practices, to prevent vulnerabilities that can lead to data breaches.
Leaked Data Types: Email Address, First Name, Last Name, IP Address
Added on February 17, 2025
Telegram alien ULP P743 by alien
Breached Records: 10,891,739
On February 12, 2025, a stealer log titled TXTLOG_ALIEN - 743 was distributed via a Telegram channel, comprising approximately 50 million lines of data. The log exposed 10.89 million unique email addresses, plaintext passwords, and homepage URLs. This incident underscores the importance of robust cybersecurity practices to mitigate the risks associated with data breaches.
Leaked Data Types: Email Address, HomePage URL, Plaintext Password
Added on February 17, 2025
Telegram alien ULP P741 by alien
Breached Records: 13,083,760
On February 11, 2025, a stealer log titled TXTLOG_ALIEN - 741 was distributed via a Telegram channel, comprising approximately 55.2 million lines of data. The log exposed 13.08 million unique email addresses, plaintext passwords, and homepage URLs. This incident underscores the importance of robust cybersecurity practices to mitigate the risks associated with data breaches.
Leaked Data Types: Email Address, HomePage URL, Plaintext Password
Added on February 15, 2025
Technoboom
Breached Records: 10,851
Sometime in 2022, the Georgian e-commerce website specializing in electronics, home appliances, and tech products, Technoboom, suffered a data breach that impacted nearly 12,000 users. The compromised data included email addresses, phone numbers, full names, password hashes stored as bcrypt, and locations. Although bcrypt is a strong hashing algorithm, affected users should still reset their passwords immediately and ensure they are not using the same credentials on other platforms.
Leaked Data Types: Email Address, Phone Number, First Name, Last Name, Password Hash
Added on February 15, 2025
Telegram alien ULP P740 by alien
Breached Records: 8,377,843
On February 10, 2025, a stealer log titled TXTLOG_ALIEN - 740 was distributed via a Telegram channel, comprising approximately 44.2 million lines of data. The log exposed 8.37 million unique email addresses, plaintext passwords, and homepage URLs. This incident underscores the importance of robust cybersecurity practices to mitigate the risks associated with data breaches.
Leaked Data Types: Email Address, HomePage URL, Plaintext Password
Added on February 15, 2025
mydocuments36.ru
Breached Records: 25,893
In August 2022, the Russian government-related website that provides public services and document processing assistance, mydocuments36.ru, suffered a data breach that impacted 25,000 users. The compromised data included email addresses, full names, usernames, passwords stored as bcrypt hashes, and dates. Users affected by this breach should update their passwords immediately, especially if they reused the same credentials on other platforms. Enabling two-factor authentication (2FA) where possible is also advised to enhance account security.
Leaked Data Types: Email Address, Username, First Name, Last Name, Password Hash
Added on February 15, 2025
Joyalukkas
Breached Records: 980
In October 2024, the eCommerce jewelry website based in the United Arab Emirates, Joyalukkas, suffered a data breach that impacted nearly 2,000 users. The compromised data included email addresses, phone numbers, company details, full names, and addresses. Users affected by the breach should remain cautious of phishing attempts and monitor their accounts for any suspicious activity. Changing passwords and securing accounts with two-factor authentication (2FA) is also recommended.
Leaked Data Types: Email Address, Phone Number, First Name, Last Name
Added on February 15, 2025
Xtream Cloud
Breached Records: 11,416
In December 2024, the United States cloud-based streaming or IPTV service website, Xtream Cloud, suffered a data breach that impacted nearly 12,000 users. The compromised data included email addresses and password hashes stored as bcrypt. This breach raises concerns about the security of user accounts, particularly if passwords are reused across multiple services. Users affected by the breach are advised to reset their passwords and enable two-factor authentication (2FA) where possible.
Leaked Data Types: Email Address, Password Hash
Added on February 15, 2025
Hollywood Hair
Breached Records: 9,540
In January 2025, Hollywood Hair, a Poland-based platform specializing in hairdressing services such as extensions, thickening, coloring, and treatments, suffered a data breach affecting approximately 270,000 records. The compromised data included email addresses, full names, phone numbers, genders, and Polish identification numbers. This incident highlights the critical need for platforms handling personal client information to implement robust cybersecurity measures to prevent data breaches.
Leaked Data Types: Email Address, Phone Number, First Name, Last Name, Gender
Added on February 14, 2025
Rightbiz
Breached Records: 36,173
In April 2023, Rightbiz, a UK-based platform that facilitates the sale of businesses, suffered a data breach affecting approximately 18 million records. The compromised data included 65 thousand unique email addresses and names. This incident highlights the importance of implementing stringent cybersecurity measures to protect user data and maintain trust.
Leaked Data Types: Email Address, First Name
Added on February 14, 2025
Le Coq Sportif
Breached Records: 80,062
In May 2023, Le Coq Sportif, a Colombian platform specializing in athletic and lifestyle apparel, suffered a data breach affecting approximately 3 million records. The exposed data included email addresses, full names, birthdays, IP addresses, and bcrypt-hashed passwords. This incident underscores the importance of strong cybersecurity practices to safeguard sensitive customer information.
Leaked Data Types: Email Address, Password Hash, First Name, Last Name, IP Address, Birthday
Added on February 14, 2025
Plan for Profit
Breached Records: 2,353
In January 2025, Plan for Profit, a UK-based resource for independent retailers and convenience stores, suffered a data breach impacting over 2,300 users. The compromised data included email addresses, phone numbers, usernames, full names, physical addresses, and passwords hashed with MD5. This incident emphasizes the importance of adopting secure password hashing algorithms and robust cybersecurity practices to safeguard user information.
Leaked Data Types: Email Address, Phone Number, Password Hash, Username, First Name, Last Name
Added on February 14, 2025
LeakBase 16Kk ULP by firegoon
Breached Records: 4,730,301
On December 29, 2024, a stealer log titled 16Kk ULP was posted on a popular hacking forum. The stealer log, containing approximately 16 million records, exposed around 4.7 million unique email addresses, homepage URLs, and passwords stored in plaintext. This breach highlights the persistent threat posed by stealer malware and emphasizes the need for heightened cybersecurity measures to protect sensitive user data.
Leaked Data Types: Email Address, Plaintext Password, HomePage URL
Added on February 14, 2025
abis.pl
Breached Records: 49,473
In July 2024, the Polish company specializing in industrial automation and related technologies, abis.pl, suffered a data breach that impacted 562,000 users. The compromised data included email addresses and plaintext passwords. The exposure of plaintext passwords significantly increases security risks, as attackers can easily exploit credentials for unauthorized access. Users affected by this breach should change their passwords immediately and enable multi-factor authentication where possible.
Leaked Data Types: Email Address, Plaintext Password
Added on February 13, 2025
LeakBase LeakyPro 60Kk ULP by farmagol
Breached Records: 15,098,267
On January 5, 2024, a stealer log titled 60Kk ULP was posted on a popular hacking forum, containing approximately 61 million records. The log exposed roughly 15 million unique email addresses, homepage URLs, and plaintext passwords. This breach underscores the critical need for stronger password management and cybersecurity measures to mitigate risks associated with large-scale data leaks.
Leaked Data Types: Email Address, Plaintext Password, HomePage URL
Added on February 13, 2025
