What are some notable breaches that have been added to HIBP recently?
Recently, several notable breaches have been added to the Have I Been Pwned (HIBP) database, highlighting the ongoing challenges of online security. Here are some significant incidents:
1. Wayback Machine Breach
-
- ***Breach Date:*** September 28, 2024
- Date Added to HIBP: October 9, 2024
- Compromised Accounts: Approximately 31,081,179
- Compromised Data: Email addresses, screen names, bcrypt-hashed passwords, and other internal data.
- Date Added to HIBP: September 3, 2024
- Compromised Accounts: 3,184,010
- Compromised Data: Email addresses, names, phone numbers, physical addresses, and partial credit card data.
The Internet Archive’s Wayback Machine suffered a significant breach that exposed data from over 31 million users. The breach was confirmed after hackers defaced the site and left a taunting message regarding the incident. Troy Hunt, the creator of HIBP, received the compromised data and incorporated it into the database shortly after verifying its authenticity[3][4][5].
2. Blooms Today Breach
-
- ***Breach Date:*** November 11, 2023
In April 2024, it was reported that records from Blooms Today were being sold on a hacking forum. The breach included sensitive information but did not expose enough credit card data to facilitate fraudulent purchases[1].
Overview of Recent Breaches
Breach Name | Breach Date | Date Added to HIBP | Compromised Accounts | Compromised Data |
---|---|---|---|---|
Wayback Machine | September 28, 2024 | October 9, 2024 | ~31 million | Email addresses, screen names, bcrypt passwords |
Blooms Today | November 11, 2023 | September 3, 2024 | 3.18 million | Email addresses, names, phone numbers |
These recent breaches underscore the importance of monitoring your online presence through tools like HIBP. Users are encouraged to regularly check their email addresses against the database to stay informed about potential compromises and take necessary actions to secure their accounts.
Citations:
[1] https://haveibeenpwned.com/PwnedWebsites
[2] https://en.wikipedia.org/wiki/Have_I_Been_Pwned%3F
[3] https://appleinsider.com/articles/24/10/10/wayback-machine-breach-affects-31-million-people
[4] https://tribune.com.pk/story/2501932/internet-archive-hacked-31-million-accounts-compromised-in-data-breach
[5] https://www.infosecurity-magazine.com/news/internet-archive-breach-31m/
[6] https://haveibeenpwned.com/FAQs
[7] https://haveibeenpwned.com/privacy
[8] https://haveibeenpwned.com/Passwords