ShellCodeX
Tools โ€ข Events โ€ข News โ€ข Insights
ShellCodeX Breach Report

APK.TW Data Breach

apk.tw
Significant exposure
Verified breach Passwords exposed
Accounts exposed 2,451,197
Breach date 03 Sep 2022
Added to tracker 09 Mar 2024
Data classes 4

What happened

In September 2022, the Taiwanese Android forum APK.TW suffered a data breach that was later redistributed as part of a larger corpus of data. The breach exposed 2.5M unique email addresses along with IP addresses, usernames and salted MD5 password hashes.

Exposed data

Email addresses IP addresses Passwords Usernames

Recommended actions

  • Change your APK.TW password immediately, and update it anywhere you reused the same password.
  • Enable two-factor authentication on the affected account and on your critical services (email, banking).
  • Watch for targeted phishing emails referencing APK.TW โ€” attackers weaponise breach data quickly.
  • Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected? Check whether your email address appears in this breach.
Check on HIBP