This tracker lists publicly disclosed breaches documented by security researchers, journalists, and official company disclosures. We do not link to, host, or distribute any stolen data. All information is sourced from public breach notifications, Have I Been Pwned, and verified security research. If your organization has been breached, contact your legal team and relevant authorities immediately.
Enter your email address to instantly check if it appears in any known public data breach — and see exactly which breaches and what type of data was exposed. We do not store your email; it is only used for this lookup.
| ORGANIZATION | DATE | RECORDS EXPOSED | SECTOR | SEVERITY | DATA TYPES |
|---|---|---|---|---|---|
Yahoo Largest breach in history. Every Yahoo account ever created ... | 2013-2014 | 3,000,000,000 | Technology | CRITICAL | EmailsPasswordsSecurity QuestionsPhone NumbersNamesDOB |
YSAM / CAM4 Unsecured Elasticsearch server exposed over 10 billion recor... | 2020 | 10,880,000,000 | Adult Entertainment | CRITICAL | EmailsPasswordsSexual OrientationFinancial RecordsIP Addresses |
Aadhaar (India) India's national biometric ID database was accessed through ... | 2018 | 1,100,000,000 | Government | CRITICAL | Biometric DataNamesAddressesPhone NumbersBank Details |
Equifax Chinese PLA unit exploited an unpatched Apache Struts vulner... | 2017 | 147,000,000 | Financial | CRITICAL | SSNsDOBAddressesDriver's LicensesCredit Card Numbers |
Facebook / Meta Scraped data from a vulnerability patched in 2019 published ... | 2021 | 533,000,000 | Social Media | CRITICAL | Phone NumbersFull NamesLocationsEmail AddressesDOBBios |
LinkedIn Data scraped via LinkedIn API and published on dark web foru... | 2021 | 700,000,000 | Professional Network | HIGH | EmailsFull NamesPhone NumbersAddressesLinkedIn ProfilesSalaries |
T-Mobile 21-year-old attacker accessed T-Mobile's systems through an ... | 2021 | 54,000,000 | Telecommunications | CRITICAL | SSNsPhone NumbersNamesAddressesDriver's LicensesIMEI Numbers |
Marriott International Chinese intelligence believed responsible. Attackers had acc... | 2014-2018 | 500,000,000 | Hospitality | CRITICAL | Passport NumbersNamesAddressesPhone NumbersPayment CardsTravel History |
Adobe Attacker group stole source code for Adobe Acrobat, ColdFusi... | 2013 | 153,000,000 | Technology | HIGH | EmailsEncrypted PasswordsCredit CardsPassword Hints |
Adult Friend Finder LFI vulnerability exploited. Passwords stored in plaintext o... | 2016 | 412,200,000 | Adult Entertainment | CRITICAL | UsernamesEmailsPasswordsSexual PreferencesIP AddressesJoin Dates |
MySpace Massive credential dump surfaced in 2016 despite the breach ... | 2013 | 360,000,000 | Social Media | MEDIUM | UsernamesEmailsPasswordsDOB |
Twitter / X API vulnerability allowed email-to-username matching. Data s... | 2022 | 235,000,000 | Social Media | HIGH | EmailsPhone NumbersUsernamesAccount Metadata |
LastPass Nation-state level attack targeting a password manager. Encr... | 2022 | 33,000,000 | Security / Password Manager | CRITICAL | Encrypted Password VaultsURLsUsernamesBilling InfoIP Addresses |
MOVEit (CL0P) CL0P ransomware group exploited MOVEit file transfer zero-da... | 2023 | 77,200,000 | Multiple / Supply Chain | CRITICAL | PIISSNsFinancial RecordsMedical RecordsGovernment IDs |
National Public Data Background check company breached in April 2024. Nearly 3 bi... | 2024 | 2,900,000,000 | Data Broker | CRITICAL | SSNsFull NamesAddressesRelativesPhone Numbers |
AT&T Data covering AT&T customers from 2019 or earlier published ... | 2024 | 73,000,000 | Telecommunications | CRITICAL | SSNsPasscodesFull NamesEmailsDOBPhone Numbers |
Change Healthcare ALPHV/BlackCat ransomware attack disrupted US healthcare pay... | 2024 | 100,000,000 | Healthcare | CRITICAL | Medical RecordsSSNsInsurance InfoPayment DataPHI |
Ticketmaster ShinyHunters group claimed responsibility. Data exfiltrated ... | 2024 | 560,000,000 | Entertainment | HIGH | NamesAddressesPhone NumbersEmailsPartial Payment Cards |