Edmunds

Have I Been PwnedConfirmed breachAdded June 1, 2026Occurred January 24, 2026177,860 accountsedmunds.comAll Edmunds breaches →

What was exposed

Device informationEmail addressesIP addressesPasswordsPhone numbersUsernames

What to do if you were affected

Change your password for this account, and anywhere you reused it. Turn on two-factor authentication.
Expect more phishing and spam at this address. Treat messages that reference this company with extra caution.
Watch for text-message phishing and SIM-swap attempts on your phone number.
Be wary of targeted scams that use your personal details to sound convincing.

Details

In January 2026, the automotive research and car-shopping platform Edmunds was listed by the ShinyHunters hacking group as having been breached . Data purportedly obtained in the incident was later published publicly and included 178k unique email addresses, usernames, passwords, IP addresses, phone numbers and vehicle-related records.

Frequently asked questions

What is the Edmunds data breach?

When did the data breach happen?

This data breach occurred around January 2026.

How many accounts were affected?

Around 177,860 accounts were affected.

What information was exposed?

Exposed data included Device information, Email addresses, IP addresses, Passwords, Phone numbers and Usernames.

What should I do if I was affected?

Change your password for this account, and anywhere you reused it. Turn on two-factor authentication. Expect more phishing and spam at this address. Treat messages that reference this company with extra caution. Watch for text-message phishing and SIM-swap attempts on your phone number. Be wary of targeted scams that use your personal details to sound convincing.

View on source ↗

Related breaches