Logo for SaverSpy

In September 2018, security researcher Bob Diachenko discovered a massive collection of personal details exposed in an unprotected Mongo DB instance. The data appears to have been used in marketing campaigns (possibly for spam purposes) but had little identifying data about it other than a description of "Yahoo_090618_ SaverSpy". The data set provided to HIBP had almost 2.5M unique email addresses (all of which were from Yahoo!) alongside names, genders and physical addresses.

Accounts breached: 2457420

Breached on: September 18, 2018

Exposed data: Email addresses, Genders, Names, and Physical addresses


Added on: September 25, 2018

%d bloggers like this: