ShellCodeX
Tools โ€ข Events โ€ข News โ€ข Insights
ShellCodeX Breach Report

Combolists Posted to Telegram Data Breach

Massive exposure
Verified breach Passwords exposed
Accounts exposed 361,468,099
Breach date 28 May 2024
Added to tracker 03 Jun 2024
Data classes 3

What happened

In May 2024, 2B rows of data with 361M unique email addresses were collated from malicious Telegram channels. The data contained 122GB across 1.7k files with email addresses, usernames, passwords and in many cases, the website they were entered into. The data appears to have been sourced from a combination of existing combolists and info stealer malware.

Exposed data

Email addresses Passwords Usernames

Recommended actions

  • Change your Combolists Posted to Telegram password immediately, and update it anywhere you reused the same password.
  • Enable two-factor authentication on the affected account and on your critical services (email, banking).
  • Watch for targeted phishing emails referencing Combolists Posted to Telegram โ€” attackers weaponise breach data quickly.
  • Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected? Check whether your email address appears in this breach.
Check on HIBP