ShellCodeX
Tools โ€ข Events โ€ข News โ€ข Insights
ShellCodeX Breach Report

Bitcoin Security Forum Gmail Dump Data Breach

forum.btcsec.com
Significant exposure
Verified breach Passwords exposed
Accounts exposed 4,789,599
Breach date 09 Jan 2014
Added to tracker 10 Sep 2014
Data classes 2

What happened

In September 2014, a large dump of nearly 5M usernames and passwords was posted to a Russian Bitcoin forum. Whilst commonly reported as 5M "Gmail passwords", the dump also contained 123k yandex.ru addresses. Whilst the origin of the breach remains unclear, the breached credentials were confirmed by multiple source as correct, albeit a number of years old.

Exposed data

Email addresses Passwords

Recommended actions

  • Change your Bitcoin Security Forum Gmail Dump password immediately, and update it anywhere you reused the same password.
  • Enable two-factor authentication on the affected account and on your critical services (email, banking).
  • Watch for targeted phishing emails referencing Bitcoin Security Forum Gmail Dump โ€” attackers weaponise breach data quickly.
  • Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected? Check whether your email address appears in this breach.
Check on HIBP