In September 2021, a publicly accessible PostgresSQL database belonging to the Playbook service was identified. Run by VC firm Plug and Play Ventures, the database had been exposed since October 2020 and contained more than 50 thousand unique email addresses along with names, phone numbers, job titles and passwords stored as PBKDF2 hashes. It took more than 2 weeks after being notified of the exposed data to properly secure it. It’s unknown whether Plug and Play Ventures notified impacted individuals as they ceased responding to queries from the press.
Accounts breached: 50538
Breached on: October 19, 2020
Exposed data: Email addresses, Job titles, Names, Passwords, Phone numbers, and Social media profiles
Domain: playbook.vc
Added on: October 11, 2021