ShellCodeX
Tools โ€ข Events โ€ข News โ€ข Insights
ShellCodeX Breach Report

Malwarebytes Data Breach

malwarebytes.org
Limited exposure
Verified breach Passwords exposed
Accounts exposed 111,623
Breach date 15 Nov 2014
Added to tracker 09 Mar 2016
Data classes 6

What happened

In November 2014, the Malwarebytes forum was hacked and 111k member records were exposed. The IP.Board forum included email and IP addresses, birth dates and passwords stored as salted hashes using a weak implementation enabling many to be rapidly cracked.

Exposed data

Dates of birth Email addresses IP addresses Passwords Usernames Website activity

Recommended actions

  • Change your Malwarebytes password immediately, and update it anywhere you reused the same password.
  • Enable two-factor authentication on the affected account and on your critical services (email, banking).
  • Watch for targeted phishing emails referencing Malwarebytes โ€” attackers weaponise breach data quickly.
  • Exposed identity data raises identity-theft risk โ€” consider credit monitoring or a credit freeze.
  • Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected? Check whether your email address appears in this breach.
Check on HIBP