Bukalapak
What was exposed
Email addressesIP addressesNamesPasswordsUsernames
What to do if you were affected
- Change your password for this account, and anywhere you reused it. Turn on two-factor authentication.
- Expect more phishing and spam at this address. Treat messages that reference this company with extra caution.
- Be wary of targeted scams that use your personal details to sound convincing.
Details
In March 2019, the Indonesian e-commerce website Bukalapak discovered a data breach of the organisation's backups dating back to October 2017 . The incident exposed approximately 13 million unique email addresses alongside IP addresses, names and passwords stored as bcrypt and salted SHA-512 hashes.
Frequently asked questions
What is the Bukalapak data breach?
In March 2019, the Indonesian e-commerce website Bukalapak discovered a data breach of the organisation's backups dating back to October 2017 . The incident exposed approximately 13 million unique email addresses alongside IP addresses, names and passwords...
When did the data breach happen?
This data breach occurred around October 2017.
How many accounts were affected?
Around 13,369,666 accounts were affected.
What information was exposed?
Exposed data included Email addresses, IP addresses, Names, Passwords and Usernames.
What should I do if I was affected?
Change your password for this account, and anywhere you reused it. Turn on two-factor authentication. Expect more phishing and spam at this address. Treat messages that reference this company with extra caution. Be wary of targeted scams that use your personal details to sound convincing.
Related breaches