| Website | https://XposedOrNot.com |
@XposedOrNot += Tigo Data Breach
The Tigo #databreach in mid-2023 involved the exposure of 300GB of data from the Chinese video chat platform, containing over 100M records. The breach included more than 2.7M unique names, usernames, email and IP addresses, genders, profile photos, and private messages.
Exposed data: Names, Usernames, Email addresses, IP addresses, Genders, Profile photos, Private messages
Potential risks: Privacy breaches, Identity exposure, Unauthorized access
@XposedOrNot += InflateVids Data Breach
The InflateVids #databreach in December 2023 exposed over 13K unique email addresses along with usernames, IP addresses, genders, and passwords stored as SHA-1 hashes. The breach impacted users of the inflatable and balloon fetish videos website.
Exposed data: Email addresses, Usernames, IP addresses, Genders, SHA-1 hash passwords
Potential risks: Privacy breaches, Identity exposure, Unauthorized access
@XposedOrNot += Naz.API Combo List Release
The Naz.API #databreach combo list released in September 2023 involved the publication of over 100GB of stealer logs and credential stuffing lists on a popular hacking forum. The data included 71M unique email addresses and 100M unique passwords, combining email and plain text password pairs linked to specific services, as well as standalone credentials from unnamed sources.
Exposed data: Email addresses, Plain text passwords, Credential pairs linked to services
Potential risks: Credential stuffing, Account takeovers, Identity theft
@XposedOrNot += Lexipol Data Breach
The Lexipol #databreach in February 2025 exposed over 673K unique email addresses along with names, phone numbers, system-generated usernames, and passwords stored as either MD5 or SHA-256 hashes. The breach also included internal documents and user records, all later published publicly.
Exposed data: Email addresses, Names, Phone numbers, Usernames, Passwords (MD5, SHA-256)
@XposedOrNot += Samsung Germany Data Breach
The Samsung Germany #databreach in March 2025 occurred via a compromise of their logistics provider, Spectos, reportedly caused by malware on an employee’s device. The breach exposed 218K unique email addresses, names, physical addresses, and details of items purchased from Samsung Germany.
Exposed data: Email addresses, Names, Physical addresses, Purchase details
Potential risks: Privacy breaches, Identity theft, Unauthorized use of purchase history
@XposedOrNot += 9Lives Data Breach
The 9Lives #databreach in October 2014 affected the Belgian gaming news forum, exposing 109K unique email addresses along with usernames and salted MD5 password hashes.
Exposed data: Email addresses, Usernames, Salted MD5 password hashes
Potential risks: Unauthorized access, Privacy breaches, Account takeovers
@XposedOrNot += Twitter Data Breach
The Twitter API Vulnerability #databreach in 2021 exposed over 5.4M user records by exploiting a flaw that allowed attackers to input phone numbers and email addresses to retrieve associated Twitter IDs. The leaked data included both public and private information such as names, login names, locations, verified status, phone numbers, and email addresses.
Exposed data: Names, Login names, Locations, Verified status, Phone numbers, Email addresses
Potential risks: Privacy breaches, Targeted phishing, Identity exposure
@XposedOrNot += SHEIN Data Breach
The SHEIN #databreach in 2018 exposed the personal information of approximately 28M customers of the global online fashion and beauty retailer. The compromised data included names, email addresses, phone numbers, and hashed passwords.
Exposed data: Names, Email addresses, Phone numbers, Hashed passwords
Potential risks: Identity theft, Unauthorized access, Privacy breaches
@XposedOrNot += German Doner Kebab Data Breach
The German Doner Kebab #databreach in March 2025 exposed data published on a popular hacking forum, including 162K unique email addresses, names, phone numbers, and physical addresses.
Exposed data: Email addresses, Names, Phone numbers, Physical addresses
Potential risks: Privacy breaches, Identity theft, Unauthorized contact
@XposedOrNot += Qraved Data Breach
The Qraved #databreach in July 2021 impacted the Indonesian restaurant website and exposed nearly 1M unique email addresses. The compromised data included names, phone numbers, dates of birth, and passwords stored as MD5 hashes, and was later redistributed on a hacking forum.
Exposed data: Email addresses, Names, Phone numbers, Dates of birth, MD5 hash passwords
Potential risks: Privacy breaches, Identity theft, Unauthorized account access