There are currently 4,604,676,162 / 4,748,055,404 accounts in our database.

We are in the process of re-indexing databases that where lost.

August 24th, 2016

Table of Contents

About Us

LeakedSource is already the best data breach monitoring service in the world and this batch of data pushes us over 2 billion records making us by far the largest as well. We're not done adding data either. Expect lots more breaches to be exposed including some in the crypto currency space.


We have already helped multiple companies secure their users with our API which provides cracked plaintext passwords from all 2 billion records for businesses to compare against their own users and forcibly change affected passwords. If you're interested in using our services, contact us about an API key.


Any journalists that want to get notified about breaches, DM us on Twitter with your email address.

Summary

Subdomains belonging to mail.ru were hacked in August of 2016.


Specifically they are:

  • cfire.mail.ru - 12,881,787 users, 6,226,196 passwords cracked at the time of this post.
  • parapa.mail.ru (main game) - 5,029,530 users, 3,329,532 passwords cracked at the time of this post.
  • parapa.mail.ru (forums) - 3,986,234 users, 2,907,572 passwords cracked at the time of this post.
  • tanks.mail.ru - 3,236,254 users, 0 passwords cracked at the time of this post.

We have so much data that we're also adding multiple other databases at the same time, a full list is below:

  • expertlaw.com - 190,938 users, 127,073 passwords cracked at the time of this post.
  • ageofconan.com - 433,662 users, 396,394 passwords cracked at the time of this post.
  • anarchy-online.com - 75,514 users, 21,775 passwords cracked at the time of this post.
  • freeadvice.com - 487,584 users, 246,958 passwords cracked at the time of this post.
  • gamesforum.com - 109,135 users, 46,758 passwords cracked at the time of this post.
  • longestjourney.com - 11,951 users, 6,782 passwords cracked at the time of this post.
  • ppcgeeks.com - 490,004 users, 257,542 passwords cracked at the time of this post.
  • thesecretworld.com (EN) - 227,956 users, 81,001 passwords cracked at the time of this post.
  • thesecretworld.com (FR) - 143,935 users, 34,676 passwords cracked at the time of this post.
  • thesecretworld.com (DE) - 144,604 users, 35,166 passwords cracked at the time of this post.

Anyone may use any information on this page for free provided LeakedSource is given credit and a direct link back.


You may search for yourself any of the leaked databases by visiting our homepage.

Passwords

Not a single website used proper password storage, they all used some variation of MD5 with or without unique salts.


We thought the passwords used by the *.mail.ru communities were comical so here is their top 50


RankPasswordFrequency
1123456789263,347
212345678201,977
312345689,756
4123456789089,497
5qwertyuiop32,584
612312312331,268
71111111130,827
81q2w3e4r5t30,087
91q2w3e4r27,399
1098765432123,387
11qazwsxedc20,748
12qweasdzxc19,039
131234qwer18,434
141234432117,488
1511111116,372
168888888814,651
171qaz2wsx14,487
18123455432114,262
19qwertyui14,187
2012312313,892
2178945612313,753
221234567891013,568
230000000013,548
24123456789a12,828
25123456712,582
268765432112,333
27crossfire12,091
28098765432111,841
2912332111,609
30asdfghjkl11,395
31qwerty11,284
321q2w3e4r5t6y11,021
33123qweasdzxc10,757
3414725836910,112
351236547899,542
3612345qwert9,162
37123456789q9,148
38qwer12348,965
39123412348,588
40qwerty1238,563
41q1w2e3r4t58,185
42q1w2e3r48,183
4311111111118,118
44112233448,061
45555555557,919
461qaz2wsx3edc7,652
477418529637,427
48123qweasd7,280
496666667,263
5010293847566,875
Follow @LeakedDatabase