Skip to content
Cyber Breaches
Search
Data breachResolved

Troy Hunt's Mailchimp List data breach (2025)

In March 2025, a phishing attack successfully gained access to Troy Hunt's Mailchimp account and automatically exported a list of people who had subscribed to the newsletter for his personal blog.

Victim
Troy Hunt's Mailchimp List
records
16.6K
SectorMedia

Imported from Have I Been Pwned — pending editorial review and translation to French. The summary below is machine-extracted; consult the source for details.

In 2025-03-25, Troy Hunt's Mailchimp List was affected by a data breach. Approximately 16,627 accounts were exposed. In March 2025, a phishing attack successfully gained access to Troy Hunt's Mailchimp account and automatically exported a list of people who had subscribed to the newsletter for his personal blog.

Sources

  1. haveibeenpwned.comhttps://haveibeenpwned.com/PwnedWebsites#TroyHunt'sMailchimpList
  2. troyhunt.comhttps://troyhunt.com

Related incidents

Data breachResolved

Pass'Sport data breach (2025)

In December 2025, data from France's Pass'Sport program was posted to a popular hacking forum. Initially misattributed to CAF (the French family allowance fund), the data contained 6.5M unique email addresses affecting 3.5M households.

Victim
Pass'Sport
Records
6.4M
Data breachResolved

APOIA.se data breach (2025)

In December 2025, a database of the Brazilian crowdfunding platform APOIA.se was posted to an online forum. In January 2026, the company confirmed it had suffered a data breach. The incident exposed 451k unique email addresses along with names and physical addresses.

Victim
APOIA.se
Records
450.8K
Data breachResolved

Under Armour data breach (2025)

In November 2025, the Everest ransomware group claimed Under Armour as a victim and attempted to extort a ransom, alleging they had obtained access to 343GB of data. In January 2026, customer data from the incident was published publicly on a popular hacking forum, including 72M email addresses.

Victim
Under Armour
Records
72.7M
Data breachResolved

CodeStepByStep data breach (2025)

In November 2025, the online coding practice tool CodeStepByStep suffered a data breach that exposed 17k records which were subsequently published online. The following month, a further corpus of data was released bringing the total to 103k.

Victim
CodeStepByStep
Records
103.1K