ShellCodeX Breach Report
Phished Data via CERT Poland Data Breach
Verified breach
Passwords exposed
Accounts exposed
67,943
Breach date
25 Feb 2023
Added to tracker
31 Aug 2023
Data classes
2
What happened
In August 2023, CERT Poland observed a phishing campaign that collected credentials from 68k victims. The campaign collected email addresses and passwords via a phishing email masquerading as a purchase order confirmation. CERT Poland identified a further 202 other phishing campaigns operating on the same C2 server, which has now been dismantled.
Exposed data
Email addresses
Passwords
Recommended actions
- Change your Phished Data via CERT Poland password immediately, and update it anywhere you reused the same password.
- Enable two-factor authentication on the affected account and on your critical services (email, banking).
- Watch for targeted phishing emails referencing Phished Data via CERT Poland โ attackers weaponise breach data quickly.
- Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected?
Check whether your email address appears in this breach.
Check on HIBP