ShellCodeX
Tools โ€ข Events โ€ข News โ€ข Insights
ShellCodeX Breach Report

Fotolog Data Breach

fotolog.com
Major exposure
Verified breach Passwords exposed
Accounts exposed 16,717,854
Breach date 01 Dec 2018
Added to tracker 15 Jun 2021
Data classes 3

What happened

In December 2018, the photo sharing social network Fotolog suffered a data breach that exposed 16.7 million unique email addresses. The data also included usernames and unsalted SHA-256 password hashes. The site was dissolved the following year and repurposed as a news website based in Brcko, Bosnia and Herzegovina.

Exposed data

Email addresses Passwords Usernames

Recommended actions

  • Change your Fotolog password immediately, and update it anywhere you reused the same password.
  • Enable two-factor authentication on the affected account and on your critical services (email, banking).
  • Watch for targeted phishing emails referencing Fotolog โ€” attackers weaponise breach data quickly.
  • Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected? Check whether your email address appears in this breach.
Check on HIBP