BreachAware

High Impact

17 July 2018

•

39,240,661 records affected

•

BreachAware

Search on Google

Description

In July 2018, a credential stuffing list containing over 39 million email addresses and passwords was discovered on a popular hacking forum. While combo lists are collected every day, the entries are largely duplicate credentials collected from various older data breaches. This particular combo list contained many new credentials that did not exist in the BreachAware database.

What to do if you're affected

1.Change your password immediately if you have an account with this service
2.Enable two-factor authentication (2FA) wherever possible
3.Check if your email appears in the breach using Have I Been Pwned
4.Monitor your accounts for suspicious activity
5.Consider using a password manager to generate unique passwords

Learn More About Data Breaches

Have I Been Pwned

Check if your data has been compromised

ENISA

EU Agency for Cybersecurity