In September 2018, a collection of almost 42 million email address and plain text password pairs was uploaded to the anonymous file sharing service kayo.moe. The operator of the service contacted HIBP to report the data which, upon further investigation, turned out to be a large credential stuffing list. For more information, read about The 42M Record kayo.moe Credential Stuffing Data.
Accounts breached: 41826763
Breached on: September 11, 2018
Exposed data: Email addresses and Passwords
Added on: September 13, 2018