ShellCodeX
Tools • Events • News • Insights
ShellCodeX Breach Report

Morele.net Data Breach

morele.net
Significant exposure
Verified breach Passwords exposed
Accounts exposed 2,467,304
Breach date 10 Oct 2018
Added to tracker 20 Apr 2019
Data classes 4

What happened

In October 2018, the Polish e-commerce website Morele.net suffered a data breach. The incident exposed almost 2.5 million unique email addresses alongside phone numbers, names and passwords stored as md5crypt hashes.

Exposed data

Email addresses Names Passwords Phone numbers

Recommended actions

  • Change your Morele.net password immediately, and update it anywhere you reused the same password.
  • Enable two-factor authentication on the affected account and on your critical services (email, banking).
  • Watch for targeted phishing emails referencing Morele.net — attackers weaponise breach data quickly.
  • Stay alert for smishing (SMS phishing) and SIM-swap attempts using your phone number.
  • Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected? Check whether your email address appears in this breach.
Check on HIBP