ShellCodeX Breach Report
Genesis Market Data Breach
genesis.market
Verified breach
Sensitive
Passwords exposed
Accounts exposed
8,000,000
Breach date
05 Apr 2023
Added to tracker
05 Apr 2023
Data classes
10
What happened
In April 2023, the stolen identity marketplace Genesis Market was shut down by the FBI and a coalition of law enforcement agencies across the globe in "Operation Cookie Monster". The service traded in "browser fingerprints" which enabled criminals to impersonate victims and access their online services. As many of the impacted accounts did not include email addresses, "8M" is merely an approximation intended to indicate scale. Other personal data compromised by the service included names, addresses and credit card information, although not all individuals had each of these fields exposed.
Exposed data
Browser user agent details
Credit card CVV
Credit cards
Dates of birth
Email addresses
Names
Passwords
Phone numbers
Physical addresses
Usernames
Recommended actions
- Change your Genesis Market password immediately, and update it anywhere you reused the same password.
- Enable two-factor authentication on the affected account and on your critical services (email, banking).
- Watch for targeted phishing emails referencing Genesis Market โ attackers weaponise breach data quickly.
- Monitor your bank and card statements closely and consider requesting a card replacement.
- Stay alert for smishing (SMS phishing) and SIM-swap attempts using your phone number.
Am I affected?
Check whether your email address appears in this breach.
Check on HIBP