ShellCodeX
Tools • Events • News • Insights
ShellCodeX Breach Report

Leet Data Breach

leet.cc
Significant exposure
Verified breach Passwords exposed
Accounts exposed 5,081,689
Breach date 10 Sep 2016
Added to tracker 30 Sep 2016
Data classes 5

What happened

In August 2016, the service for creating and running Pocket Minecraft edition servers known as Leet was reported as having suffered a data breach that impacted 6 million subscribers. The incident reported by Softpedia had allegedly taken place earlier in the year, although the data set sent to HIBP was dated as recently as early September but contained only 2 million subscribers. The data included usernames, email and IP addresses and SHA512 hashes. A further 3 million accounts were obtained and added to HIBP several days after the initial data was loaded bringing the total to over 5 million.

Exposed data

Email addresses IP addresses Passwords Usernames Website activity

Recommended actions

  • Change your Leet password immediately, and update it anywhere you reused the same password.
  • Enable two-factor authentication on the affected account and on your critical services (email, banking).
  • Watch for targeted phishing emails referencing Leet — attackers weaponise breach data quickly.
  • Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected? Check whether your email address appears in this breach.
Check on HIBP