ShellCodeX
Tools โ€ข Events โ€ข News โ€ข Insights
ShellCodeX Breach Report

Kaneva Data Breach

kaneva.com
Significant exposure
Verified breach Passwords exposed
Accounts exposed 3,901,179
Breach date 01 Jul 2016
Added to tracker 09 Dec 2023
Data classes 4

What happened

In July 2016, now defunct website Kaneva, the service to "build and explore virtual worlds", suffered a data breach that exposed 3.9M user records. The data included email addresses, usernames, dates of birth and salted MD5 password hashes.

Exposed data

Dates of birth Email addresses Passwords Usernames

Recommended actions

  • Change your Kaneva password immediately, and update it anywhere you reused the same password.
  • Enable two-factor authentication on the affected account and on your critical services (email, banking).
  • Watch for targeted phishing emails referencing Kaneva โ€” attackers weaponise breach data quickly.
  • Exposed identity data raises identity-theft risk โ€” consider credit monitoring or a credit freeze.
  • Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected? Check whether your email address appears in this breach.
Check on HIBP