Data breaches, Internet and Password Management

The 773 Million Record "Collection #1" Data Breach

Troy Hunt

JANUARY 16, 2019

Many people will land on this page after learning that their email address has appeared in a data breach I've called "Collection #1". Collection #1 is a set of email addresses and passwords totalling 2,692,818,238 rows. It's made up of many different individual data breaches from literally thousands of different sources.

Data breaches

Data breaches Passwords Password Management Accountability

I've Just Added 2,844 New Data Breaches With 80M Records To Have I Been Pwned

Troy Hunt

FEBRUARY 26, 2018

tl;dr - a collection of nearly 3k alleged data breaches has appeared with a bunch of data already proven legitimate from previous incidents, but also tens of millions of addresses that haven't been seen in HIBP before. It's also interesting because among nearly 3k other breaches, the data contains Dropbox.

Data breaches

Data breaches Passwords Accountability Password Management

Security expert Troy Hunt hit by phishing attack

Malwarebytes

MARCH 26, 2025

Internet security expert and educator Troy Hunt disclosed this week that he had been hit by one of the oldestand most provenscams in the online world: A phishing attack. Hunt also noticed that, when he tried to log into his Mailchimp account by following the phishing emails link, his password manager did not auto-fill his account details.

Phishing

Phishing Data breaches Password Management Scams

Bitwarden vs 1Password: Compare Top Password Managers

eSecurity Planet

MARCH 8, 2022

The average internet user has somewhere around 100 accounts, according to NordPass research, meaning they have to track 100 different passwords or risk using the same one over and over. 1Password is a popular business password manager that encrypts data both at rest and in transit. Bitwarden Overview.

Password Management

Password Management Passwords Encryption Accountability

The Life Cycle of a Breached Database

Krebs on Security

JULY 29, 2021

Every time there is another data breach, we are asked to change our password at the breached entity. Here’s a closer look at what typically transpires in the weeks or months before an organization notifies its users about a breached database. Don’t re-use passwords. TARGETED PHISHING.

Passwords

Passwords Password Management Phishing Scams

ROUNDTABLE: Why T-Mobile’s latest huge data breach could fuel attacks directed at mobile devices

The Last Watchdog

AUGUST 19, 2021

The configuration issue made this access point publicly available on the Internet. T-Mobile is offering two free years of identity protection for affected customers, but ultimately this is pushing the responsibility for the safety of the data onto the user. For T-Mobile, this is the sixth major breach since 2018.

Mobile

Mobile Data breaches Authentication Accountability

Internet Safety Month: Avoiding the consequences of unsafe Internet practices

Malwarebytes

JUNE 3, 2022

Welcome to Internet Safety Month, a once-a-year event in which you, the public, are told that anywhere between three and 30 different best practices will simplify your approach to staying safe online. This year, then, for Internet Safety Month, we’re packaging our advice a little differently. Learn from the experiences of others.

Internet

Internet Internet Scams Passwords

LifeLock Data Breach Compromises Thousands! Learn How to Help Protect Your Online Identity

Identity IQ

JANUARY 16, 2023

LifeLock Data Breach Compromises Thousands! Recently, thousands of Norton LifeLock customer accounts were compromised in a data breach. Credential stuffing is a type of data breach where hackers use previously stolen lists of information, such as usernames and passwords, to gain unauthorized access to accounts.

Data breaches

Data breaches Identity Theft Password Management Passwords

How to Find Old Accounts for Deletion

Security Boulevard

JANUARY 29, 2025

I probably don't really need to explain it to you if you're reading this, as you likely understand that there's an account for just about everything on the internet. I probably don't really need to explain it to you if you're reading this, as you likely understand that there's an account for just about everything on the internet.

Accountability

Accountability Password Management Data breaches Passwords

Internet Safety Month: Keep Your Online Experience Safe and Secure

Webroot

MAY 31, 2024

What is Internet Safety Month? Each June, the online safety community observes Internet Safety Month as a time to reflect on our digital habits and ensure we’re taking the best precautions to stay safe online. 2 64% of Americans have experienced a data breach. 3 95% of cybersecurity breaches are due to human error.

Internet

Internet Internet Identity Theft Passwords

12 Million Zacks accounts leaked by cybercriminal

Malwarebytes

FEBRUARY 14, 2025

Over the years Zacks has suffered a few data breaches. In 2023, data allegedly belonging to Zacks containing 8,615,098 records was leaked online. The most recent data in this database is from May 2020. This breach is also being publicly shared on the internet. Change your password.

Accountability

Accountability Data breaches Passwords Phishing

Affirm says Evolve Bank data breach also compromised some of its customers

Malwarebytes

JULY 3, 2024

‘Buy now, pay later’ payment specialist Affirm has warned that holders of its payment cards had their personal information exposed after a ransomware attack and data breach at Evolve Bank & Trust. According to Evolve , the attack started after “an employee inadvertently clicked on a malicious internet link.”

Data breaches

Data breaches Banking Passwords Phishing

GUEST ESSAY: Until we eliminate passwords, follow these 4 sure steps to password hygiene

The Last Watchdog

NOVEMBER 22, 2021

More Americans than ever are working remotely and seeking out entertainment online, and this increase of internet activity has fueled a dramatic spike in cybercrime. With so much critical data now stored in the cloud, how can people protect their accounts? 4) Use a password manager. Related: Training human sensors.

Passwords

Passwords Password Management Accountability Data breaches

Sweet Treats, Sour Breach: Cyberattack Hits Krispy Kreme

SecureWorld News

DECEMBER 12, 2024

The attack goes to show that, truly, nothing Internet-connected is sacred." Scobey recommends: Privileged Access Management (PAM): Restrict access to sensitive systems to essential personnel and monitor privileged accounts for unusual activity. and "What happens if this platform is impacted?"

Password Management

Password Management Passwords CISO Cybersecurity

GUEST ESSAY: Sure steps to achieve a robust employee cybersecurity awareness training regimen

The Last Watchdog

OCTOBER 24, 2022

Employee security awareness is the most important defense against data breaches. It involves regularly changing passwords and inventorying sensitive data. There are several ways you can protect your business from data breaches. Change passwords regularly. Inventory your sensitive data.

Passwords

Passwords Security Awareness Data breaches Cybersecurity

Identity Management Day: Safeguarding your digital identity

Webroot

APRIL 4, 2025

Its something that can easily happen if your personal data falls into the hands of cybercriminals. In our interconnected world, data breaches and identity theft are a constant threat, making it more important than ever to guard your sensitive personal information. Thats where a password manager comes in.

Identity Theft

Identity Theft Banking Password Management Passwords

Digital life protection: How Webroot keeps you safe in a constantly changing world

Webroot

FEBRUARY 21, 2025

Nearly every aspect of life is connected to the internet, so protecting your devices, identity, and privacy has never been more critical. Phishing scams, ransomware attacks, data breaches, and identity theft are part of a growing list of online dangers that are a daily reality.

Antivirus

Antivirus Identity Theft Cyber threats Phishing

8 security tips for small businesses

Malwarebytes

NOVEMBER 6, 2024

Lock things down Having a strict policy to protect your important assets with strong passwords and multi-factor authentication (MFA) should be a no-brainer. Consider making it easier for your staff by using a single-sign-on service or alternatively by providing them with a password manager.

Small Business

Small Business Backups VPN Firewall

BEST PRACTICES – 9 must-do security protocols companies must embrace to stem remote work risks

The Last Watchdog

MARCH 6, 2021

Passwords for accounts should be unique for every account and should compromise a long string of distinct characters, lower and upper case letters, and numbers. It is difficult to remember all passwords. That is where a password manager for business comes in to help keep track of passwords. Set up firewalls.

VPN

VPN Passwords Firewall Risk

Internet safety tips for kids and teens: A comprehensive guide for the modern parent

Malwarebytes

SEPTEMBER 21, 2021

Today’s generation of kids and teens consider their devices and the Internet as extensions of their lives. So without further ado, let’s dive into what we should be teaching our kids about Internet safety and what we can do to enforce these teachings. 7 Internet safety tips. This is where a password manager comes in.

Internet

Internet Internet Passwords Password Management

Experts Fear Crooks are Cracking Keys Stolen in LastPass Breach

Krebs on Security

SEPTEMBER 5, 2023

In November 2022, the password manager service LastPass disclosed a breach in which hackers stole password vaults containing both encrypted and plaintext data for more than 25 million users. As it happens, Plex announced its own data breach one day before LastPass disclosed its initial August intrusion.

Cryptocurrency

Cryptocurrency Passwords Encryption Accountability

Passkeys Can Make Passwords a Thing of the Past

Security Boulevard

JUNE 15, 2023

Over time, we have learned to live with them–even when, time and again, they show how bad they are at securing our most sensitive data. The number of data breaches increases almost daily–and in recent weeks, a leading password manager vendor, an internet hosting provider.

Passwords

Passwords Password Management Data breaches Internet

Home Assistant, Pwned Passwords and Security Misconceptions

Troy Hunt

MARCH 10, 2021

Pwned Passwords is a repository of 613M passwords exposed in previous data breaches, which makes them very poor choices for future use. They're totally free and they have a really cool anonymity API that ensures no useful information about the password being searched for is ever exposed.

Passwords

Passwords IoT Password Management Data breaches

Supply Chain Attack Hits Password Manager

SecureWorld News

APRIL 27, 2021

A similar type of attack just played out against an Enterprise Password Management tool called Passwordstate. Supply chain cyberattack against password manager Passwordstate. Passwordstate data breach remediation: 8 steps to take. Stop the Passwordstate Service and Internet Information Server.

Password Management

Password Management Passwords Data breaches Firewall

A Deep Dive on the Recent Widespread DNS Hijacking Attacks

Krebs on Security

FEBRUARY 18, 2019

This post seeks to document the extent of those attacks, and traces the origins of this overwhelmingly successful cyber espionage campaign back to a cascading series of breaches at key Internet infrastructure providers. federal civilian agencies to secure the login credentials for their Internet domain records.

DNS

DNS Internet Internet Government

IPVanish vs NordVPN: Compare Features and Price

eSecurity Planet

MARCH 12, 2025

It offers basic VPN functionality along with advanced features like data breach scanning and password manager integrations. VPNs are a great choice for protecting your internet browsing, but theyre just a starting point for security. per month, add features like data breach scanning and browsing protection.

VPN

VPN Mobile DNS Password Management

RockYou2021: The Mother Lode of Password Collections Leaks 8.4 Billion Passwords Online

Hot for Security

JUNE 8, 2021

If you’re having trouble remembering or keeping track of your passwords, look up a trustworthy password manager. The data breach pandemic is here to stay, affecting millions of internet users each year.

Passwords

Passwords Accountability Password Management Internet

World Password Day and the importance of password integrity

Webroot

MAY 3, 2022

If your passwords follow the standard guidelines offered by most sites that require a single capital letter, at least 6 charters, numbers and one special character, hackers can easily make a series of attempts to try and gain access. Without proper password integrity, personal information and business data may be at risk.

Passwords

Passwords Identity Theft Password Management Antivirus

How to Take Control of Your Online Presence

Security Through Education

MARCH 18, 2025

Many of us dont realize just how much we share about ourselves on the internet. The internet never forgetsold accounts, personal information, and forgotten posts can linger for years. Check Password Managers: If you use a password manager, review stored logins for accounts you no longer use.

Accountability

Accountability Social Engineering Media Password Management

Security Affairs newsletter Round 482 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

JULY 28, 2024

Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Spyware

Spyware Data breaches Cybercrime Banking

100 million+ US citizens have records leaked by background check service

Malwarebytes

SEPTEMBER 23, 2024

A background check left a huge database unprotected online containing 2.2TB of people’s data, according to research by Cybernews. The database was left passwordless and easily accessible to anyone on the internet by background check firm MC2 Data. Change your password. Check the vendor’s advice.

Data breaches

Data breaches Passwords Phishing Password Management

Police forces pipe 225 million pwned passwords into ‘Have I Been Pwned?’

Malwarebytes

DECEMBER 21, 2021

HIBP) allows users to type in an email address, phone number or password and find out how many times they’ve been involved in a data breach. For starters, change your password. Your new password needs to be hard to guess, and the best way to ensure that is to let a password manager do it for you.

Passwords

Passwords Password Management Authentication Data breaches

NEW TECH: ‘Passwordless authentication’ takes us closer to eliminating passwords as the weak link

The Last Watchdog

OCTOBER 15, 2019

Compromised logins continue to facilitate cyber attacks at all levels, from phishing ruses to credential stuffing to enabling hackers to probe deep inside of a breached network. So what’s stopping us from getting rid of passwords altogether? Passwords may have been very effective securing Roman roads. million on average.

Passwords

Passwords Authentication Data breaches Internet

Experian, You Have Some Explaining to Do

Krebs on Security

JULY 10, 2022

In both cases the readers used password managers to select strong, unique passwords for their Experian accounts. Turner said he created the account at Experian in 2020 to place a security freeze on his credit file, and that he used a password manager to select and store a strong, unique password for his Experian account.

Accountability

Accountability Passwords Authentication Password Management

If You're Not Paying for the Product, You Are. Possibly Just Consuming Goodwill for Free

Troy Hunt

JULY 18, 2022

But this isn't an internet age thing, the origins go back way further, originally being used to describe TV viewers being served ads. I wanted to build a data breach search service. But I'd given them to Macromedia (Dreamweaver FTW!) What about Why No HTTPS ? Or HTTPS is Easy ?

Data breaches

Data breaches Passwords Password Management Software

PetSmart warns customers of credential stuffing attack

Malwarebytes

MARCH 7, 2024

If the user had different passwords on Site A and Site B, the attacker would have been stopped before they got in to Site B. This is why we are continuously telling people to not reuse their passwords. If all your logins are hard to remember (and they should be), you can use a password manager to help you.

Passwords

Passwords Identity Theft Accountability Data breaches

Sony was attacked by two ransomware operators

Malwarebytes

OCTOBER 4, 2023

Then, on October 4, news leaked that Sony had told current and former employees and their family members about another cybersecurity breach that exposed personal information. This was confirmed by a Data Breach Notification submitted in Maine. Change your password. Better yet, let a password manager choose one for you.

Ransomware

Ransomware Data breaches Passwords Backups

What Are the Risks of a Data Breach?

Identity IQ

MAY 13, 2024

What Are the Risks of a Data Breach? IdentityIQ In a society dominated by digital interconnectedness, the risks associated with data breaches loom over individuals, businesses, and society at large. What Is a Data Breach? Manually search the internet for your personal details and request removal.

Data breaches

Data breaches Risk Identity Theft Passwords

Here's Why [Insert Thing Here] Is Not a Password Killer

Troy Hunt

NOVEMBER 5, 2018

Often it's related to data breaches or sloppy behaviour on behalf of some online service playing fast and loose with HTTPS or passwords or some other easily observable security posture. There is no escaping the fact that passwords remain high-risk security propositions for the vast majority of people.

Passwords

Passwords Authentication Data breaches Accountability

5 Signs a Cyberattack Is Under Way and 5 Things You Need to Do Before It Happens

Adam Levin

FEBRUARY 10, 2020

Most likely you didn’t pause before you clicked, and got phished or compromised in some other way–possibly by an internet of things device connected to your home network. Consider using a password manager. Or use a password manager.). Tip: Back up everything (for more, see below). Your Finances Glitch.

Passwords

Passwords Phishing Password Management Accountability

A study reveals the list of worst passwords of 2019

Security Affairs

DECEMBER 16, 2019

Another year is ending and this is the right time to discover which are the worst passwords of 2019 by analyzing data leaked in various data breaches. Independent anonymous researchers, compiled and shared with security firm NordPass a list of 200 most popular passwords that were leaked in data breaches during 2019.

Passwords

Passwords Data breaches Advertising Password Management

Comcast’s Xfinity breached by Citrix Bleed; 36 million customer’s data accessed

Malwarebytes

DECEMBER 21, 2023

In a notice for its customers , Xfinity acknowledges it recently fell victim to a data security incident. Xfinity is Comcast’s brand for TV, internet, and home phone services, sometimes referred to as Comcast Cable Communications. During the data breach the attackers were able to access 35.8 Change your password.

Data breaches

Data breaches Passwords Identity Theft Accountability

Securing the Supply Chain During Shipping Challenges

CyberSecurity Insiders

DECEMBER 20, 2021

Given the prominence of third-party data breaches, supply chains can’t afford to assume any device, network or user is secure. They must restrict data as much as possible and verify identities at every step. Shipping challenges can cause widespread disruptions across supply chains, but data breaches can make them far worse.

Data breaches

Data breaches Social Engineering Education Password Management

Cybersecurity Fatigue: Its Impact and Solutions

CyberSecurity Insiders

APRIL 5, 2023

Also, employees install more and more cybersecurity solutions, from password managers and ad blockers to Virtual Private Networks. million is the cost of a data breach representing an increase of 2.6% Delayed Breach Reporting It is unwise to handle sensitive moments all by yourself.

Cybersecurity

Cybersecurity Data breaches Passwords Education

The 773 Million Record "Collection #1" Data Breach

I've Just Added 2,844 New Data Breaches With 80M Records To Have I Been Pwned

Trending Sources

Security expert Troy Hunt hit by phishing attack

Bitwarden vs 1Password: Compare Top Password Managers

The Life Cycle of a Breached Database

ROUNDTABLE: Why T-Mobile’s latest huge data breach could fuel attacks directed at mobile devices

Internet Safety Month: Avoiding the consequences of unsafe Internet practices

LifeLock Data Breach Compromises Thousands! Learn How to Help Protect Your Online Identity

How to Find Old Accounts for Deletion

Internet Safety Month: Keep Your Online Experience Safe and Secure

12 Million Zacks accounts leaked by cybercriminal

Affirm says Evolve Bank data breach also compromised some of its customers

GUEST ESSAY: Until we eliminate passwords, follow these 4 sure steps to password hygiene

Sweet Treats, Sour Breach: Cyberattack Hits Krispy Kreme

GUEST ESSAY: Sure steps to achieve a robust employee cybersecurity awareness training regimen

Identity Management Day: Safeguarding your digital identity

Digital life protection: How Webroot keeps you safe in a constantly changing world

8 security tips for small businesses

BEST PRACTICES – 9 must-do security protocols companies must embrace to stem remote work risks

Internet safety tips for kids and teens: A comprehensive guide for the modern parent

Experts Fear Crooks are Cracking Keys Stolen in LastPass Breach

Passkeys Can Make Passwords a Thing of the Past

Home Assistant, Pwned Passwords and Security Misconceptions

Supply Chain Attack Hits Password Manager

A Deep Dive on the Recent Widespread DNS Hijacking Attacks

IPVanish vs NordVPN: Compare Features and Price

RockYou2021: The Mother Lode of Password Collections Leaks 8.4 Billion Passwords Online

World Password Day and the importance of password integrity

How to Take Control of Your Online Presence

Security Affairs newsletter Round 482 by Pierluigi Paganini – INTERNATIONAL EDITION

100 million+ US citizens have records leaked by background check service

Police forces pipe 225 million pwned passwords into ‘Have I Been Pwned?’

NEW TECH: ‘Passwordless authentication’ takes us closer to eliminating passwords as the weak link

Experian, You Have Some Explaining to Do

If You're Not Paying for the Product, You Are. Possibly Just Consuming Goodwill for Free

PetSmart warns customers of credential stuffing attack

Sony was attacked by two ransomware operators

What Are the Risks of a Data Breach?

Here's Why [Insert Thing Here] Is Not a Password Killer

5 Signs a Cyberattack Is Under Way and 5 Things You Need to Do Before It Happens

A study reveals the list of worst passwords of 2019

Comcast’s Xfinity breached by Citrix Bleed; 36 million customer’s data accessed

Securing the Supply Chain During Shipping Challenges

Cybersecurity Fatigue: Its Impact and Solutions

Stay Connected