ShellCodeX
Tools โ€ข Events โ€ข News โ€ข Insights
ShellCodeX Breach Report

Coachella Data Breach

coachella.com
Limited exposure
Verified breach Passwords exposed
Accounts exposed 599,802
Breach date 22 Feb 2017
Added to tracker 27 Jun 2017
Data classes 4

What happened

In February 2017, hundreds of thousands of records from the Coachella music festival were discovered being sold online. Allegedly taken from a combination of the main Coachella website and their vBulletin-based message board, the data included almost 600k usernames, IP and email addresses and salted hashes of passwords (MD5 in the case of the message board).

Exposed data

Email addresses IP addresses Passwords Usernames

Recommended actions

  • Change your Coachella password immediately, and update it anywhere you reused the same password.
  • Enable two-factor authentication on the affected account and on your critical services (email, banking).
  • Watch for targeted phishing emails referencing Coachella โ€” attackers weaponise breach data quickly.
  • Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected? Check whether your email address appears in this breach.
Check on HIBP