Collection #12019
In January 2019, a large collection of credential stuffing lists (combinations of email addresses and passwords used to hijack accounts on other services) was discovered being distributed on a popular hacking forum. The data contained almost 2.7 billion records including 773 million unique email addresses alongside passwords those addresses had used on other breached services. Full details on the incident and how to search the breached passwords are provided in the blog post The 773 Million Rec
- Exposures
- Passwords Email
- Accounts
- 772.9 million
References
- Jan 2019, The 773 Million Record "Collection #1" Data Breach Troy Hunt www.troyhunt.com
- May 2020, Hacker arrested in Ukraine for selling billions of stolen credentials ZDNet Catalin Cimpanu
- May 2020, A Hacker Known as 'Sanix' Has Been Pinned for 773 Million Stolen Usernames and Passwords
- Jan 2019, 773M Password ‘Megabreach’ is Years Old – Krebs on Security Brian Krebs
- Jan 2019, Collection 1 data breach: what you need to know
- Jan 2019, The Collection #1 Data Breach: Insights and Tips on This Cyberthreat
- Collection 1 Breach -- How To Find Out If Your Password Has Been Stolen Kate O'Flaherty
- 'Collection #1' Breach Is Huge, But Should You Be Worried?
- Jan 2019, Collection#1, a.k.a the Biggest Security Breach in History
- Jan 2019, Collection #1 (and #2–5) are the latest massive password dumps Joshua Long
