Covve

High Impact

15 February 2020

•

59,026,280 records affected

•

Dehashed

Search on Google

Description

On February 15, 2020, a publicly accessible ElasticSearch instance was identified with a vast volume of personal information. Originally stemming from Covve's contacts app, the breach included detailed personal information of users and interactions between Covve users and their contacts. Sensitive data such as names, email addresses, phone numbers, and social profiles were among the compromised records, affecting over 59 million entries.

What to do if you're affected

1.Change your password immediately if you have an account with this service
2.Enable two-factor authentication (2FA) wherever possible
3.Check if your email appears in the breach using Have I Been Pwned
4.Monitor your accounts for suspicious activity
5.Consider using a password manager to generate unique passwords

Learn More About Data Breaches

Have I Been Pwned

Check if your data has been compromised

ENISA

EU Agency for Cybersecurity