ShellCodeX
Tools • Events • News • Insights
ShellCodeX Breach Report

ShareThis Data Breach

sharethis.com
Major exposure
Verified breach Passwords exposed
Accounts exposed 40,960,499
Breach date 09 Jul 2018
Added to tracker 03 Mar 2019
Data classes 4

What happened

In July 2018, the social bookmarking and sharing service ShareThis suffered a data breach. The incident exposed 41 million unique email addresses alongside names and in some cases, dates of birth and password hashes. In 2019, the data appeared listed for sale on a dark web marketplace (along with several other large breaches) and subsequently began circulating more broadly. The data was provided to HIBP by dehashed.com.

Exposed data

Dates of birth Email addresses Names Passwords

Recommended actions

  • Change your ShareThis password immediately, and update it anywhere you reused the same password.
  • Enable two-factor authentication on the affected account and on your critical services (email, banking).
  • Watch for targeted phishing emails referencing ShareThis — attackers weaponise breach data quickly.
  • Exposed identity data raises identity-theft risk — consider credit monitoring or a credit freeze.
  • Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected? Check whether your email address appears in this breach.
Check on HIBP