ShellCodeX
Tools โ€ข Events โ€ข News โ€ข Insights
ShellCodeX Breach Report

i-Dressup Data Breach

i-dressup.com
Significant exposure
Verified breach Passwords exposed
Accounts exposed 2,191,565
Breach date 15 Jul 2016
Added to tracker 26 Sep 2016
Data classes 2

What happened

In June 2016, the teen social site known as i-Dressup was hacked and over 2 million user accounts were exposed. At the time the hack was reported, the i-Dressup operators were not contactable and the underlying SQL injection flaw remained open, allegedly exposing a total of 5.5 million accounts. The breach included email addresses and passwords stored in plain text.

Exposed data

Email addresses Passwords

Recommended actions

  • Change your i-Dressup password immediately, and update it anywhere you reused the same password.
  • Enable two-factor authentication on the affected account and on your critical services (email, banking).
  • Watch for targeted phishing emails referencing i-Dressup โ€” attackers weaponise breach data quickly.
  • Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected? Check whether your email address appears in this breach.
Check on HIBP