ShellCodeX
Tools โ€ข Events โ€ข News โ€ข Insights
ShellCodeX Breach Report

Data Enrichment Exposure From PDL Customer Data Breach

Massive exposure
Verified breach
Accounts exposed 622,161,052
Breach date 16 Oct 2019
Added to tracker 22 Nov 2019
Data classes 7

What happened

In October 2019, security researchers Vinny Troia and Bob Diachenko identified an unprotected Elasticsearch server holding 1.2 billion records of personal data. The exposed data included an index indicating it was sourced from data enrichment company People Data Labs (PDL) and contained 622 million unique email addresses. The server was not owned by PDL and it's believed a customer failed to properly secure the database. Exposed information included email addresses, phone numbers, social media profiles and job history data.

Exposed data

Email addresses Employers Geographic locations Job titles Names Phone numbers Social media profiles

Recommended actions

  • Watch for targeted phishing emails referencing Data Enrichment Exposure From PDL Customer โ€” attackers weaponise breach data quickly.
  • Stay alert for smishing (SMS phishing) and SIM-swap attempts using your phone number.
  • Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected? Check whether your email address appears in this breach.
Check on HIBP