978 disclosed16.04 B records

BREACHBreach timeline

Disclosed breaches catalogued by Have I Been Pwned — aggregate metadata only, no PII. Refreshed weekly. Authored by Adam Lundqvist.

978

disclosed breaches

16.04 B

records compromised

68%

involve passwords

malware-linked

Disclosed breaches per year

Clear year filter (2018)

Click a bar to filter the table by year. Bar tooltip shows the year’s record total.

Top 25 of 32 matching (IP addresses) (2018)

Clear data-class filter

Name	Domain	Records	Date	Data classes
GoldSilver	goldsilver.com	242.7 K	2018-10-21	Bank account numbers, Email addresses, IP addresses +8
OGUsers (2019 breach)	ogusers.com	161.1 K	2018-12-26	Email addresses, IP addresses, Passwords +2
Wendy's	wendys.com.ph	52.5 K	2018-03-31	Education levels, Email addresses, IP addresses +5
SpyFonesensitive	spyfone.com	44.1 K	2018-08-16	Audio recordings, Browsing histories, Device information +8
Light's Hope	lightshope.org	30.5 K	2018-06-25	Dates of birth, Email addresses, Geographic locations +4
Società Italiana degli Autori ed Editori	siae.it	14.6 K	2018-11-03	Email addresses, IP addresses, Names +2
Bestialitysextaboosensitive	bestialitysextaboo.com	3.2 K	2018-03-19	Dates of birth, Email addresses, Genders +5

Scope note. This release ships a server-rendered SVG year-histogram + filterable table instead of the brief’s interactive d3 timeline with brush selector + per-circle hover. The d3-scale / d3-shape upgrade is tracked as a follow-up at squr-cs-graph#issues. The HIBP feed has no per-record “ransomware-linked” flag — the brief’s 184 ransomware count is approximated by is_malware (7 today).

Sourced from Have I Been Pwned. Aggregate metadata only — no PII. Curated by Adam Lundqvist, Founder at SQUR.