Association Nationale des Premiers Secours
Feb 10, 2026
Critical 5,600 accounts exposed
Email Addresses Passwords Names Dates Of Birth
In January 2026, a data breach impacting the French non-profit Association Nationale des Premiers Secours (ANPS) was posted to a hacking forum . The breach exposed 5.6k unique email addresses along with names, dates of birth and places of birth. ANPS self-submitted the data to HIBP and advised the i...
1,435,174 accounts exposed
Email Addresses Passwords Names Phone Numbers
+3 more
In January 2026, the automated investment platform Betterment confirmed it had suffered a data breach attributed to a social engineering attack . As part of the incident, Betterment customers received fraudulent crypto-related messages promising high returns if funds were sent to an attacker-control...
29,815,722 accounts exposed
Email Addresses Usernames Names
In December 2025, SoundCloud announced it had discovered unauthorised activity on its platform . The incident allowed an attacker to map publicly available SoundCloud profile data to email addresses for approximately 20% of its users. The impacted data included 30M unique email addresses, names, use...
Under Armour
Jan 21, 2026
Critical 72,742,892 accounts exposed
Email Addresses Names Dates Of Birth Genders
+1 more
In November 2025, the Everest ransomware group claimed Under Armour as a victim and attempted to extort a ransom , alleging they had obtained access to 343GB of data. In January 2026, customer data from the incident was published publicly on a popular hacking forum , including 72M email addresses. M...
10,225,145 accounts exposed
Email Addresses Passwords Names Genders
In December 2025, data allegedly breached from the Indian streaming music service 'Raaga' was posted for sale to a popular hacking forum . The data contained 10M unique email addresses along with names, genders, ages (in some cases, full date of birth), postcodes and passwords stored as unsalted MD5...
6,215,150 accounts exposed
Email Addresses Passwords Usernames Names
+1 more
In January 2026, data allegedly scraped via an Instagram API was posted to a popular hacking forum . The dataset contained 17M rows of public Instagram information, including usernames, display names, account IDs, and in some cases, geolocation data. Of these records, 6.2M included an associated ema...