Skip to content
Cyber Breaches
Search
Data breachResolved

Kayo.moe Credential Stuffing List data breach (2018)

In September 2018, a collection of almost 42 million email address and plain text password pairs was uploaded to the anonymous file sharing service kayo.moe.

Victim
Kayo.moe Credential Stuffing List
records
41.8M
SectorOther

Imported from Have I Been Pwned — pending editorial review and translation to French. The summary below is machine-extracted; consult the source for details.

In 2018-09-11, Kayo.moe Credential Stuffing List was affected by a data breach. Approximately 41,826,763 accounts were exposed. In September 2018, a collection of almost 42 million email address and plain text password pairs was uploaded to the anonymous file sharing service kayo.moe.

Sources

  1. haveibeenpwned.comhttps://haveibeenpwned.com/PwnedWebsites#Kayo.moeCredentialStuffingList

Related incidents

Data breachResolved

Elasticsearch Instance of Sales Leads on AWS data breach (2018)

In October 2018, security researcher Bob Diachenko identified multiple exposed databases with hundreds of millions of records. One of those datasets was an Elasticsearch instance on AWS containing sales lead data and 5.8M unique email addresses.

Victim
Elasticsearch Instance of Sales Leads on AWS
Records
5.8M
Data breachResolved

SaverSpy data breach (2018)

In September 2018, security researcher Bob Diachenko discovered a massive collection of personal details exposed in an unprotected Mongo DB instance. The data appears to have been used in marketing campaigns (possibly for spam purposes) but had little identifying data about it other than a…

Victim
SaverSpy
Records
2.5M
Data breachResolved

SpyFone data breach (2018)

In August 2018, the spyware company SpyFone left terabytes of data publicly exposed. Collected surreptitiously whilst the targets were using their devices, the data included photos, audio recordings, text messages and browsing history which were then exposed via a number of misconfigurations within…

Victim
SpyFone
Records
44.1K
Data breachResolved

Animoto data breach (2018)

In July 2018, the cloud-based video making service Animoto suffered a data breach. The breach exposed 22 million unique email addresses alongside names, dates of birth, country of origin and salted password hashes.

Victim
Animoto
Records
22.4M