One of the largest credential set which was exposed on Jan 2019 through darkweb channels. Total records were found to be more than in excess of 2.9 billion records. This exposure was also highly covered in media.

One of the largest credential set was made public by unknown sources in Explloit.in.

Approximately 160 million records of famous business networking site Linkedin got breached and exposed. In 2012, Linkedin suffered a major breach and the entire data exposed could have been exfiltrated during the said incident.

Though unconfirmed by Badoo, a huge amount of credentials with badoo was exposed. The breached data was also found to be available on sale in few dark web markets.

A faulty debug server left exposed 2.3 million records of popular crowd funding site Patreon. The entire data dump was further made public in multiple sites. Though no financial data was exposed, entire private transactions including emails, conversations and PII was leaked.

Tumblr announced on 2016 that salted and hashed passwords from early 2013 was obtained by third parties. This data however was also found to be available for sale in dark web markets.

An alleged data dump from Zoosk got circulated in 2011. Though Zoosk has clearly denied the breach citing inconsistencies, considering the large amount of records exposed, it is still being added to XoN under Zoosk under FalseBreach category.

Approximately 26 million customer data from Neopets was hacked and leaked.

Now defunct LeakedSource.com was able to obtain 91 million sets of credentials related to Rambler.ru

Entire data of iMesh was made available for at $1 in darkweb markets. Though the service is not active, this one was a potential data mine for folks focussing on spreading spam as the xposed data contains IP addresses with email which can be very helpful for geo-targetting and spreading.

An unpatched PHP vulnerability led the free web hositing provider to be breached and plain text user credentials exposed. Not to mention the fact, the hosting provider was also found to have poor security practises on user interface as well as systems management.

URL shortener Bitly suffered a data breach in 2014 and the data started leaking out during Oct 2017.

Full data enrichment records amounting to more than 200 million was found to be on sale in dark web markets. Samples were found to be vetted and validated and confirmed to be of Experian though Experian claims it is not theirs.

Social engineering helped hackers break into the user account details of Xat approximately 5 million in number.

17 Media lost almost 30 million user records as per reports circulated on underground websites. Breached data from 17 media was sold for as less as $150.

Unsecured database of dating website fling.com leaked all customer data including intimate details on their requirments and preferences. Fling denied the breach stating it was a test data with dummy data, however multiple soures have checked and verified the breach to be authentic.

The in-famous Youporn was hacked and data of its customers. Initial reports indicate a faulty chat service providing messaging service was the primary reason for this data breach.

XSplit advised all its customers of a potential breach in their infrastructure and prompted for password reset.

During Nov 2017, Imgur informed that their user accounts amounting to 1.7 million records were breached in 2014 are currently exposed and leaked.

Passwords shared across websites were found to be the root cause of the data breach of AbuseWithUs website. Allegedly one of the administrators had a common credential to the infamous and now shut website Leaksource.

Gaming website Nextgenupdate got hacked and leaked approximately 1.1 million customer data

Hacker going by online handle "Crimeagency" posted data from 126 websites exploited through outdated vBulletin forum software. A full dump of Nulled.io to hacked because of poor security practises in using IPBoard, the forum software used.

Blackhatworld website database was breached and approximately 779k user accounts xposed.

Approximately 650k customers of Dublin listed Paddy power was hacked and exposed by unknown people. The data were from 2010 as per the statement released by PP.

Approximately 505k customer data of TorrentInvites, a famous torrent sharing website.

Approximately 458k users of the Nintendo Wii U forum , WiiUISO was hacked and xposed.