Skip to content
Cyber Breaches
Search
Data breachResolved

Polish Credentials data breach (2023)

In May 2023, a credential stuffing list of 6.3M Polish email address and password pairs appeared on a local forum. Likely obtained by malware running on victims' machines, each record included an email address and plain text password alongside the website the credentials were used on.

Victim
Polish Credentials
records
1.2M
SectorMedia

Imported from Have I Been Pwned — pending editorial review and translation to French. The summary below is machine-extracted; consult the source for details.

In 2023-05-29, Polish Credentials was affected by a data breach. Approximately 1,204,870 accounts were exposed. In May 2023, a credential stuffing list of 6.3M Polish email address and password pairs appeared on a local forum. Likely obtained by malware running on victims' machines, each record included an email address and plain text password alongside the website the credentials were used on.

Sources

  1. haveibeenpwned.comhttps://haveibeenpwned.com/PwnedWebsites#PolishCredentials

Related incidents

Data breachResolved

Zadig & Voltaire data breach (2023)

In June 2024, a data brach sourced from French fashion brand Zadig & Voltaire was publicly posted to a popular hacking forum. The data included names, email and physical addresses, phone numbers and genders.

Victim
Zadig & Voltaire
Records
586.9K
Data breachResolved

Chess data breach (2023)

In November 2023, over 800k user records were scraped from the Chess website and posted to a popular hacking forum. The data included email address, name, username and the geographic location of the user. A further 446k scraped records were later provided and added to HIBP.

Victim
Chess
Records
1.3M
Data breachResolved

LinkedIn Scraped and Faked Data (2023) data breach (2023)

In November 2023, a post to a popular hacking forum alleged that millions of LinkedIn records had been scraped and leaked. On investigation, the data turned out to be a combination of legitimate data scraped from LinkedIn and email addresses constructed from impacted individuals' names.

Victim
LinkedIn Scraped and Faked Data (2023)
Records
19.8M
Data breachResolved

Toumei data breach (2023)

In October 2023, the Japanese consultancy firm Toumei suffered a data breach. The breach exposed over 100M lines and 10GB of data including 77k unique email addresses along with names, phone numbers and physical addresses.

Victim
Toumei
Records
76.7K