Mailchimp
133 customer accounts compromised in social engineering
SaaS platforms, cloud providers, developer tooling, and app-layer infrastructure are concentrated attack surfaces. One tech vendor breach can expose thousands of downstream customers. Below is every tech-sector breach LeakTrace has indexed.
133 customer accounts compromised in social engineering
133 customer accounts accessed via social engineering — third breach in 12 months
290,000 customer records stolen — national IDs, IMEI numbers, contact info
2.6M user records scraped via API
211,524,284 records exposed — Email addresses, Names, Social media profiles, Usernames
200M email-to-username mappings leaked on dark web
Engineer laptop malware led to customer secret theft — all secrets needed rotation
71K customer account records compromised in credential stuffing
200M+ email addresses and profile data compiled from API vulnerability
All customer secrets and tokens potentially compromised in platform breach
229M user records exposed in historical breach data surfacing
Employee tokens stolen, private code repositories accessed
Encrypted password vaults and customer metadata stolen via compromised developer account
400K restaurant reservation records exposed
15,000 email accounts compromised — business customer data accessed
6,450 customer password vaults potentially accessed via credential-stuffing campaign
925K customer password manager vaults potentially compromised
919,790 records exposed — Email addresses, IP addresses, Passwords, Usernames
2.4M smart home camera user records exposed
Employee data and game development plans stolen via SMS phishing
Play ransomware encrypted Exchange email servers — customer hosted email disrupted
Hosted Exchange environment taken down by Play ransomware
Multi-year breach — source code stolen, malware installed on hosting servers
14,500 patient records leaked from major NZ IT services provider — Rhysida ransomware