In June 2016, the teen social site known as i-Dressup was hacked and over 2 million user accounts were exposed. At the time the hack was reported, the i-Dressup operators were not contactable and the underlying SQL injection flaw remained open, allegedly exposing a total of 5.5 million accounts. The breach included email addresses and passwords stored in plain text.
Accounts breached: 2191565
Breached on: July 15, 2016
Exposed data: Email addresses and Passwords
Added on: September 26, 2016