ShellCodeX
Tools โ€ข Events โ€ข News โ€ข Insights
ShellCodeX Breach Report

StarTribune Data Breach

startribune.com
Significant exposure
Verified breach Passwords exposed
Accounts exposed 2,192,857
Breach date 10 Oct 2019
Added to tracker 30 Oct 2020
Data classes 7

What happened

In October 2019, the Minnesota-based news service StarTribune suffered a data breach which was subsequently sold on the dark web. The breach exposed over 2 million unique email addresses alongside names, usernames, physical addresses, dates of birth, genders and passwords stored as bcrypt hashes. The data was provided to HIBP by dehashed.com.

Exposed data

Dates of birth Email addresses Genders Names Passwords Physical addresses Usernames

Recommended actions

  • Change your StarTribune password immediately, and update it anywhere you reused the same password.
  • Enable two-factor authentication on the affected account and on your critical services (email, banking).
  • Watch for targeted phishing emails referencing StarTribune โ€” attackers weaponise breach data quickly.
  • Exposed identity data raises identity-theft risk โ€” consider credit monitoring or a credit freeze.
  • Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected? Check whether your email address appears in this breach.
Check on HIBP