ShellCodeX Breach Report
Catho Data Breach
catho.com.br
Verified breach
Passwords exposed
Accounts exposed
1,173,012
Breach date
01 Mar 2020
Added to tracker
18 Aug 2020
Data classes
4
What happened
In approximately March 2020, the Brazilian recruitment website Catho was compromised and subsequently appeared alongside 20 other breached websites listed for sale on a dark web marketplace. The breach included almost 11 million records with 1.2 million unique email addresses. Names, usernames and plain text passwords were also exposed. The data was provided to HIBP by breachbase.pw.
Exposed data
Email addresses
Names
Passwords
Usernames
Recommended actions
- Change your Catho password immediately, and update it anywhere you reused the same password.
- Enable two-factor authentication on the affected account and on your critical services (email, banking).
- Watch for targeted phishing emails referencing Catho โ attackers weaponise breach data quickly.
- Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected?
Check whether your email address appears in this breach.
Check on HIBP