ShellCodeX
Tools • Events • News • Insights
ShellCodeX Breach Report

AlpineReplay Data Breach

traceup.com
Limited exposure
Verified breach Passwords exposed
Accounts exposed 898,681
Breach date 27 Aug 2019
Added to tracker 17 Oct 2024
Data classes 7

What happened

In 2019, the snow sports tracking app AlpineReplay suffered a data breach that exposed 900k unique email addresses. Later rolled into the Trace service, the breach included names, usernames, genders, dates of birth, weights and passwords stored as either unsalted MD5 or bcrypt hashes.

Exposed data

Dates of birth Email addresses Genders Names Passwords Physical attributes Usernames

Recommended actions

  • Change your AlpineReplay password immediately, and update it anywhere you reused the same password.
  • Enable two-factor authentication on the affected account and on your critical services (email, banking).
  • Watch for targeted phishing emails referencing AlpineReplay — attackers weaponise breach data quickly.
  • Exposed identity data raises identity-theft risk — consider credit monitoring or a credit freeze.
  • Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected? Check whether your email address appears in this breach.
Check on HIBP