Recent Data Leaks
Live
← Back to timeline

Data breaches in 2017

54 tracked incidents from 2017

Thursday, September 18, 2025
BreachHave I Been PwnedSeptember 18, 2025

FreeOnes

In February 2017, the forum for the adult website FreeOnes suffered a data breach that was later redistributed as part of a larger corpus of data . The data included 960k unique email addresses alongside usernames, IP addresses and salted MD5 password hashes.

960,213 accounts affectedOccurred 2017
Tuesday, March 26, 2024
BreachHave I Been PwnedMarch 26, 2024

SwordFantasy

In January 2019, the now defunct MMO and RPG game SwordFantasy suffered a data breach that exposed 2.7M unique email addresses. Other impacted data included username, IP address and salted MD5 password hashes.

2,690,657 accounts affectedOccurred 2017
Thursday, January 4, 2024
BreachHave I Been PwnedJanuary 4, 2024

Legendas.TV

In October 2017, the now defunct Brazilian service for retrieving subtitles in Portuguese Legendas.TV suffered a data breach that exposed nearly 4M customer records . The impacted data included names, usernames, email and IP addresses and unsalted SHA-1...

3,869,181 accounts affectedOccurred 2017
Saturday, May 22, 2021
BreachHave I Been PwnedMay 22, 2021

Moneycontrol

In April 2021, hackers posted data for sale originating from the online Indian financial platform, Moneycontrol . The data included 763 thousand unique email addresses (allegedly a subset of a larger 40 million account breach), alongside geographic locations,...

762,874 accounts affectedOccurred 2017
Tuesday, February 16, 2021
BreachHave I Been PwnedFebruary 16, 2021

Ge.tt

In May 2017, the file sharing platform Ge.tt suffered a data breach . The data was subsequently put up for sale on a dark web marketplace in February 2019 alongside a raft of other breaches. The Ge.tt breach included names, social media profile identifiers,...

2,481,121 accounts affectedOccurred 2017
Thursday, October 29, 2020
BreachHave I Been PwnedOctober 29, 2020

Reincubate

In October 2020, the app data company Reincubate suffered a data breach which exposed a backup from November 2017 (the newest record in the data appeared several months earlier). The data included over 616k unique email addresses, names and passwords stored...

616,146 accounts affectedOccurred 2017
Tuesday, May 26, 2020
BreachHave I Been PwnedMay 26, 2020

LiveJournal

In mid-2019, news broke of an alleged LiveJournal data breach . This followed multiple reports of credential abuse against Dreamwidth beginning in 2018 , a fork of LiveJournal with a significant crossover in user base. The breach allegedly dates back to 2017...

26,372,781 accounts affectedOccurred 2017
BreachHave I Been PwnedMay 26, 2020

PetFlow

In December 2017, the pet care delivery service PetFlow suffered a data breach which consequently appeared for sale on a dark web marketplace . Almost 1M accounts were impacted and exposed email addresses and passwords stored as unsalted MD5 hashes.

990,919 accounts affectedOccurred 2017
Monday, March 30, 2020
BreachHave I Been PwnedMarch 30, 2020

Dueling Network

In March 2017, the Flash game based on the Yu-Gi-Oh trading card game Dueling Network suffered a data breach . The site itself was taken offline in 2016 due to a cease-and-desist order but the forum remained online for another year. The data breach exposed...

6,486,626 accounts affectedOccurred 2017
Tuesday, December 24, 2019
BreachHave I Been PwnedDecember 24, 2019

Factual

In March 2017, a file containing 8M rows of data allegedly sourced from data aggregator Factual was compiled and later exchanged on the premise it was a "breach". The data contained 2.5M unique email addresses alongside business names, addresses and phone...

2,461,696 accounts affectedOccurred 2017
Sunday, October 6, 2019
BreachHave I Been PwnedOctober 6, 2019

Sephora

In approximately January 2017, the beauty store Sephora suffered a data breach . Impacting customers in South East Asia, Australia and New Zealand, 780k unique email addresses were included in the breach alongside names, genders, dates of birth, ethnicities...

780,073 accounts affectedOccurred 2017
Friday, August 30, 2019
BreachHave I Been PwnedAugust 30, 2019

Coinmama

In August 2017, the crypto coin brokerage service Coinmama suffered a data breach that impacted 479k subscribers. The breach was discovered in February 2019 with exposed data including email addresses, usernames and passwords stored as MD5 WordPress hashes....

478,824 accounts affectedOccurred 2017
Tuesday, July 16, 2019
BreachHave I Been PwnedJuly 16, 2019

piZap

In approximately December 2017, the online photo editing site piZap suffered a data breach . The data was later placed up for sale on a dark web marketplace along with a collection of other data breaches in February 2019. A total of 42 million unique email...

41,817,893 accounts affectedOccurred 2017
Thursday, May 2, 2019
BreachHave I Been PwnedMay 2, 2019

Appartoo

In March 2017, the French Flatsharing site known as Appartoo suffered a data breach. The incident exposed an extensive amount of personal information on almost 50k members including email addresses, genders, ages, private messages sent between users of the...

49,681 accounts affectedOccurred 2017
Thursday, April 18, 2019
BreachHave I Been PwnedApril 18, 2019

Bukalapak

In March 2019, the Indonesian e-commerce website Bukalapak discovered a data breach of the organisation's backups dating back to October 2017 . The incident exposed approximately 13 million unique email addresses alongside IP addresses, names and passwords...

13,369,666 accounts affectedOccurred 2017
Tuesday, April 9, 2019
BreachHave I Been PwnedApril 9, 2019

DataCamp

In December 2018, the data science website DataCamp suffered a data breach of records dating back to January 2017. The incident exposed 760k unique email and IP addresses along with names and passwords stored as bcrypt hashes. In 2019, the data appeared...

760,561 accounts affectedOccurred 2017
Wednesday, February 20, 2019
BreachHave I Been PwnedFebruary 20, 2019

MyHeritage

In October 2017, the genealogy website MyHeritage suffered a data breach . The incident was reported 7 months later after a security researcher discovered the data and contacted MyHeritage. In total, more than 92M customer records were exposed and included...

91,991,358 accounts affectedOccurred 2017
Sunday, December 9, 2018
BreachHave I Been PwnedDecember 9, 2018

Hub4Tech

On an unknown date in approximately 2017, the Indian training and assessment service known as Hub4Tech suffered a data breach via a SQL injection attack. The incident exposed almost 37k unique email addresses and passwords stored as unsalted MD5 hashes. No...

36,916 accounts affectedOccurred 2017
Thursday, September 13, 2018
BreachHave I Been PwnedSeptember 13, 2018

Russian America

In approximately 2017, the website for Russian speakers in America known as Russian America suffered a data breach. The incident exposed 183k unique records including names, email addresses, phone numbers and passwords stored in both plain text and as MD5...

182,717 accounts affectedOccurred 2017
Saturday, April 28, 2018
BreachHave I Been PwnedApril 28, 2018

TGBUS

In approximately 2017, it's alleged that the Chinese gaming site known as TGBUS suffered a data breach that impacted over 10 million unique subscribers. Whilst there is evidence that the data is legitimate, due to the difficulty of emphatically verifying the...

10,371,766 accounts affectedOccurred 2017
Thursday, April 19, 2018
BreachHave I Been PwnedApril 19, 2018

Taringa

In September 2017, news broke that Taringa had suffered a data breach exposing 28 million records . Known as "The Latin American Reddit", Taringa's breach disclosure notice indicated the incident dated back to August that year. The exposed data included...

27,971,100 accounts affectedOccurred 2017
Wednesday, April 11, 2018
BreachHave I Been PwnedApril 11, 2018

Smogon

In April 2018, the Pokémon website known as Smogon announced they'd suffered a data breach . The breach dated back to September 2017 and affected their XenForo based forum. The exposed data included usernames, email addresses, genders and both bcrypt and MD5...

386,489 accounts affectedOccurred 2017
Monday, February 19, 2018
BreachHave I Been PwnedFebruary 19, 2018

Underworld Empire

In April 2017, the vBulletin forum for the Underworld Empire game suffered a data breach that exposed 429k accounts. The data was then posted to a hacking forum in mid-February 2018 where it was made available to download. The source data contained IP and...

428,779 accounts affectedOccurred 2017
Friday, February 16, 2018
BreachHave I Been PwnedFebruary 16, 2018

8tracks

In June 2017, the online playlists service known as 8Tracks suffered a data breach which impacted 18 million accounts. In their disclosure, 8Tracks advised that "the vector for the attack was an employee’s GitHub account, which was not secured using...

17,979,961 accounts affectedOccurred 2017
Monday, January 29, 2018
BreachHave I Been PwnedJanuary 29, 2018

TheTVDB.com

In November 2017, the open television database known as TheTVDB.com suffered a data breach . The breached data was posted to a hacking forum and included 182k records with usernames, email addresses and MySQL password hashes.

181,871 accounts affectedOccurred 2017
Monday, January 15, 2018
BreachHave I Been PwnedJanuary 15, 2018

The Fly on the Wall

In December 2017, the stock market news website The Fly on the Wall suffered a data breach. The data in the breach included 84k unique email addresses as well as purchase histories and credit card data. Numerous attempts were made to contact The Fly on the...

84,011 accounts affectedOccurred 2017
BreachHave I Been PwnedJanuary 15, 2018

Lyrics Mania

In December 2017, the song lyrics website known as Lyrics Mania suffered a data breach. The data in the breach included 109k usernames, email addresses and plain text passwords. Numerous attempts were made to contact Lyrics Mania about the incident , however...

109,202 accounts affectedOccurred 2017
BreachHave I Been PwnedJanuary 15, 2018

Open CS:GO

In December 2017, the website for purchasing Counter-Strike skins known as Open CS:GO (Counter-Strike: Global Offensive) suffered a data breach (address since redirects to dropgun.com). The 10GB file contained an extensive amount of personal information...

512,311 accounts affectedOccurred 2017
Sunday, January 7, 2018
BreachHave I Been PwnedJanuary 7, 2018

2fast4u

In December 2017, the Belgian motorcycle forum 2fast4u discovered a data breach of their system. The breach of the vBulletin message board impacted over 17k individual users and exposed email addresses, usersnames and salted MD5 passwords.

17,706 accounts affectedOccurred 2017
Wednesday, January 3, 2018
BreachHave I Been PwnedJanuary 3, 2018

HoundDawgs

In December 2017, the Danish torrent tracker known as HoundDawgs suffered a data breach . More than 55GB of data was dumped publicly and whilst there was initially contention as to the severity of the incident , the data did indeed contain more than 45k...

45,701 accounts affectedOccurred 2017
Sunday, December 10, 2017
BreachHave I Been PwnedDecember 10, 2017

dvd-shop.ch

In December 2017, the online Swiss DVD store known as dvd-shop.ch suffered a data breach . The incident led to the exposure of 68k email addresses and plain text passwords. The site has since been updated to indicate that it is currently closed.

67,973 accounts affectedOccurred 2017
BreachHave I Been PwnedDecember 10, 2017

Netshoes

In December 2017, the online Brazilian retailer known as Netshoes had half a million records allegedly hacked from their system posted publicly . The company was contacted by local Brazilian media outlet Tecmundo and subsequently advised that no indications...

499,836 accounts affectedOccurred 2017
Friday, December 8, 2017
BreachHave I Been PwnedDecember 8, 2017

ai.type

In December 2017, the virtual keyboard application ai.type was found to have left a huge amount of data publicly facing in an unsecured MongoDB instance . Discovered by researchers at The Kromtech Security Center, the 577GB data set included extensive...

20,580,060 accounts affectedOccurred 2017
Friday, November 24, 2017
BreachHave I Been PwnedNovember 24, 2017

Bolt

In approximately March 2017, the file sharing website Bolt suffered a data breach resulting in the exposure of 995k unique user records. The data was sourced from their vBulletin forum and contained email and IP addresses, usernames and salted MD5 password...

995,274 accounts affectedOccurred 2017
Wednesday, October 18, 2017
BreachHave I Been PwnedOctober 18, 2017

Master Deeds

In March 2017, a 27GB database backup file named "Master Deeds" was sent to HIBP by a supporter of the project. Upon detailed analysis later that year, the file was found to contain the personal data of tens of millions of living and deceased South African...

2,257,930 accounts affectedOccurred 2017
Wednesday, October 11, 2017
BreachHave I Been PwnedOctober 11, 2017

Victory Phones

In January 2017, the automated telephony services company Victory Phones left a Mongo DB database publicly facing without a password . Subsequently, 213GB of data was downloaded by an unauthorised party including names, addresses, phone numbers and over 166k...

166,046 accounts affectedOccurred 2017
Monday, September 4, 2017
BreachHave I Been PwnedSeptember 4, 2017

Zomato

In May 2017, the restaurant guide website Zomato was hacked resulting in the exposure of almost 17 million accounts. The data was consequently redistributed online and contains email addresses, usernames and salted MD5 hashes of passwords (the password hash...

16,472,873 accounts affectedOccurred 2017
BreachHave I Been PwnedSeptember 4, 2017

MALL.cz

In July 2017, the Czech Republic e-commerce site MALL.cz suffered a data breach after which 735k unique accounts including email addresses, names, phone numbers and passwords were later posted online. Whilst passwords were stored as hashes, a number of...

735,405 accounts affectedOccurred 2017
Tuesday, August 29, 2017
BreachHave I Been PwnedAugust 29, 2017

Onliner Spambot

In August 2017, a spambot by the name of Onliner Spambot was identified by security researcher Benkow moʞuƎq . The malicious software contained a server-based component located on an IP address in the Netherlands which exposed a large number of files...

711,477,622 accounts affectedOccurred 2017
Tuesday, July 18, 2017
BreachHave I Been PwnedJuly 18, 2017

B2B USA Businesses

In mid-2017, a spam list of over 105 million individuals in corporate America was discovered online. Referred to as "B2B USA Businesses", the list categorised email addresses by employer, providing information on individuals' job titles plus their work phone...

105,059,554 accounts affectedOccurred 2017
Tuesday, June 27, 2017
BreachHave I Been PwnedJune 27, 2017

Coachella

In February 2017, hundreds of thousands of records from the Coachella music festival were discovered being sold online . Allegedly taken from a combination of the main Coachella website and their vBulletin-based message board, the data included almost 600k...

599,802 accounts affectedOccurred 2017
Friday, June 9, 2017
BreachHave I Been PwnedJune 9, 2017

Exposed VINs

In June 2017, an unsecured database with more than 10 million VINs (vehicle identification numbers) was discovered by researchers . Believed to be sourced from US car dealerships, the data included a raft of personal information and vehicle data along with...

396,650 accounts affectedOccurred 2017
Thursday, June 1, 2017
BreachHave I Been PwnedJune 1, 2017

Edmodo

In May 2017, the education platform Edmodo was hacked resulting in the exposure of 77 million records comprised of over 43 million unique customer email addresses. The data was consequently published to a popular hacking forum and made freely available. The...

43,423,561 accounts affectedOccurred 2017
Thursday, May 18, 2017
BreachHave I Been PwnedMay 18, 2017

DaFont

In May 2017, font sharing site DaFont suffered a data breach resulting in the exposure of 637k records. Allegedly due to a SQL injection vulnerability exploited by multiple parties, the exposed data included usernames, email addresses and passwords stored as...

637,340 accounts affectedOccurred 2017
Tuesday, May 16, 2017
BreachHave I Been PwnedMay 16, 2017

Bell (2017 breach)

In May 2017, the Bell telecommunications company in Canada suffered a data breach resulting in the exposure of millions of customer records. The data was consequently leaked online with a message from the attacker stating that they were "releasing a...

2,231,256 accounts affectedOccurred 2017
Sunday, April 30, 2017
BreachHave I Been PwnedApril 30, 2017

Retina-X

In February 2017, the mobile device monitoring software developer Retina-X was hacked and customer data downloaded before being wiped from their servers. The incident was covered in the Motherboard article titled Inside the 'Stalkerware' Surveillance Market,...

71,153 accounts affectedOccurred 2017
Tuesday, April 25, 2017
BreachHave I Been PwnedApril 25, 2017

R2 (2017 forum breach)

In early 2017, the forum for the gaming website R2 Games was hacked . R2 had previously appeared on HIBP in 2015 after a prior incident. This one exposed over 1 million unique user accounts and corresponding MD5 password hashes with no salt.

1,023,466 accounts affectedOccurred 2017
Friday, April 7, 2017
BreachHave I Been PwnedApril 7, 2017

Health Now Networks

In March 2017, the telemarketing service Health Now Networks left a database containing hundreds of thousands of medical records exposed . There were over 900,000 records in total containing significant volumes of personal information including names, dates...

321,920 accounts affectedOccurred 2017
Tuesday, March 21, 2017
BreachHave I Been PwnedMarch 21, 2017

CrimeAgency vBulletin Hacks

In January 2016, a large number of unpatched vBulletin forums were compromised by an actor known as "CrimeAgency" . A total of 140 forums had data including usernames, email addresses and passwords (predominantly stored as salted MD5 hashes), extracted and...

942,044 accounts affectedOccurred 2017
Monday, March 13, 2017
BreachHave I Been PwnedMarch 13, 2017

Ster-Kinekor

In 2016, the South African cinema company Ster-Kinekor had a security flaw which leaked a large amount of customer data via an enumeration vulnerability in the API of their old website. Whilst more than 6 million accounts were leaked by the flaw, the exposed...

1,619,544 accounts affectedOccurred 2017
Wednesday, March 8, 2017
BreachHave I Been PwnedMarch 8, 2017

River City Media Spam List

In January 2017, a massive trove of data from River City Media was found exposed online . The data was found to contain almost 1.4 billion records including email and IP addresses, names and physical addresses, all of which was used as part of an enormous...

393,430,309 accounts affectedOccurred 2017
Tuesday, March 7, 2017
BreachHave I Been PwnedMarch 7, 2017

Little Monsters

In approximately January 2017, the Lady Gaga fan site known as "Little Monsters" suffered a data breach that impacted 1 million accounts . The data contained usernames, email addresses, dates of birth and bcrypt hashes of passwords.

995,698 accounts affectedOccurred 2017
Monday, February 27, 2017
BreachHave I Been PwnedFebruary 27, 2017

CloudPets

In January, the maker of teddy bears that record children's voices and sends them to family and friends via the internet CloudPets left their database publicly exposed and it was subsequently downloaded by external parties (the data was also subject to 3...

583,503 accounts affectedOccurred 2017
Sunday, February 5, 2017
BreachHave I Been PwnedFebruary 5, 2017

Freedom Hosting II

In January 2017, the free hidden service host Freedom Hosting II suffered a data breach . The attack allegedly took down 20% of dark web sites running behind Tor hidden services with the attacker claiming that of the 10,613 impacted sites, more than 50% of...

380,830 accounts affectedOccurred 2017