ShellCodeX Breach Report
Duowan.com Data Breach
duowan.com
Unverified
Passwords exposed
Accounts exposed
2,639,894
Breach date
01 Jan 2011
Added to tracker
07 Nov 2016
Data classes
3
What happened
In approximately 2011, data was allegedly obtained from the Chinese gaming website known as Duowan.com and contained 2.6M accounts. Whilst there is evidence that the data is legitimate, due to the difficulty of emphatically verifying the Chinese breach it has been flagged as "unverified". The data in the breach contains email addresses, user names and plain text passwords. Read more about Chinese data breaches in Have I Been Pwned.
Exposed data
Email addresses
Passwords
Usernames
Recommended actions
- Change your Duowan.com password immediately, and update it anywhere you reused the same password.
- Enable two-factor authentication on the affected account and on your critical services (email, banking).
- Watch for targeted phishing emails referencing Duowan.com โ attackers weaponise breach data quickly.
- Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected?
Check whether your email address appears in this breach.
Check on HIBP