ShellCodeX
Tools • Events • News • Insights
ShellCodeX Breach Report

Mangatoon Data Breach

mangatoon.mobi
Major exposure
Verified breach Passwords exposed
Accounts exposed 23,040,238
Breach date 13 May 2022
Added to tracker 06 Jul 2022
Data classes 8

What happened

In May 2022, the Hong Kong based Manga service Mangatoon suffered a data breach that exposed 23M subscriber records. The breach exposed names, email addresses, genders, social media account identities, auth tokens from social logins and passwords stored as salted MD5 hashes. Mangatoon did not respond to multiple attempts to make contact regarding the breach.

Exposed data

Auth tokens Avatars Email addresses Genders Names Passwords Social media profiles Usernames

Recommended actions

  • Change your Mangatoon password immediately, and update it anywhere you reused the same password.
  • Enable two-factor authentication on the affected account and on your critical services (email, banking).
  • Watch for targeted phishing emails referencing Mangatoon — attackers weaponise breach data quickly.
  • Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected? Check whether your email address appears in this breach.
Check on HIBP