News

DATA BREACH: Verifications.io

As some of you may already know, there was a data breach in February 2019.

Verifications.io suffered this breach which lead to 763 million unique email addresses being exposed.

    This breach was discovered by Bob Diachenko and Vinny Troja. It was due to data being stored in a MongoDB left publicly facing without a password.

    Records with the data breach included personal attributes such as names, phone numbers, IP addresses, date of birth and genders. There were no passwords included in this data breach.

    But what do Verifications.io do?

    • Someone uploads a list of email addresses to validate.
    • Verifications.io has a list of mail servers and internal email accounts that are used to validate an email address.
    • They do this by sending an email. If it does not bounce, the email is validated.
    • If it bounces, they put it in a bounce list so they can easily validate later on.

    Verifications.io website went offline during the disclosure process. Specifics on this data breach are as below:

    • Breach date: 25 February 2019
    • Compromised accounts: 763,117,241
    • Compromised data: Dates of birth, Email addresses, Employers, Genders, Geographic locations, IP addresses, Job titles, Names, Phone numbers, Physical addresses

    If you are concerned you may be a victim, please do not hesitate to contact us to discuss how we can assist you.

    << Go back to the previous page