Here's an overview of the various breaches that have been consolidated into this site.
Each of these has been dumped publicly and is readily available via various sites on the web.
This information is also available via an RSS feed.
Sensitive breach, not publicly searchable Retired breach, removed from system Unverified breach, may be sourced from elsewhere Fabricated breach, likely not legitimate Spam List, used for spam marketing In approximately March 2015, the free web hosting provider 000webhost suffered a major data breach that exposed almost 15 million customer records.
The data was sold and traded before 000webhost was alerted in October.
The breach included names, email addresses and plain text passwords.
Compromised data: Email addresses, IP addresses, Names, Passwords In approximately 2012, it's alleged that the Chinese email service known as 126 suffered a data breach that impacted 6.4 million subscribers.
Read more about Chinese data breaches in Have I been pwned.Compromised data: Email addresses, Passwords In April 2016, customer data obtained from the streaming app known as "17" appeared listed for sale on a Tor hidden service marketplace.The data contained over 4 million unique email addresses along with IP addresses, usernames and passwords stored as unsalted MD5 hashes.Compromised data: Device information, Email addresses, IP addresses, Passwords, Usernames In February 2018, a massive collection of almost 3,000 alleged data breaches was found online.Whilst some of the data had previously been seen in Have I Been Pwned, 2,844 of the files consisting of more than 80 million unique email addresses had not previously been seen.Each file contained both an email address and plain text password and were consequently loaded as a single "unverified" data breach.Compromised data: Email addresses, Passwords In December 2017, the Belgian motorcycle forum 2fast4u discovered a data breach of their system.The breach of the v Bulletin message board impacted over 17k individual users and exposed email addresses, usersnames and salted MD5 passwords.Compromised data: Email addresses, Passwords, Usernames In approximately 2011, it's alleged that the Chinese gaming site known as 7k7k suffered a data breach that impacted 9.1 million subscribers.The data in the breach contains usernames, email addresses and plain text passwords.Compromised data: Email addresses, Passwords, Usernames In June 2017, the online playlists service known as 8Tracks suffered a data breach which impacted 18 million accounts.