ShellCodeX
Tools โ€ข Events โ€ข News โ€ข Insights
ShellCodeX Breach Report

Paddy Power Data Breach

paddypower.com
Limited exposure
Verified breach
Accounts exposed 590,954
Breach date 25 Oct 2010
Added to tracker 11 Oct 2015
Data classes 10

What happened

In October 2010, the Irish bookmaker Paddy Power suffered a data breach that exposed 750,000 customer records with nearly 600,000 unique email addresses. The breach was not disclosed until July 2014 and contained extensive personal information including names, addresses, phone numbers and plain text security questions and answers.

Exposed data

Account balances Dates of birth Email addresses IP addresses Names Phone numbers Physical addresses Security questions and answers Usernames Website activity

Recommended actions

  • Watch for targeted phishing emails referencing Paddy Power โ€” attackers weaponise breach data quickly.
  • Stay alert for smishing (SMS phishing) and SIM-swap attempts using your phone number.
  • Exposed identity data raises identity-theft risk โ€” consider credit monitoring or a credit freeze.
  • Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected? Check whether your email address appears in this breach.
Check on HIBP