In December 2020, the book promotion site NetGalley suffered a data breach. The incident exposed 1.4 million unique email addresses alongside names, usernames, physical and IP addresses, phone numbers, dates of birth and passwords stored as salted SHA-1 hashes. The data was provided to HIBP by a source who requested it be attributed to pom@pompur.in.
Accounts breached: 1436435
Breached on: December 21, 2020
Exposed data: Dates of birth, Email addresses, IP addresses, Names, Passwords, Phone numbers, Physical addresses, and Usernames
Domain: netgalley.com
Added on: February 23, 2021