ShellCodeX Breach Report
StarTribune Data Breach
startribune.com
Verified breach
Passwords exposed
Accounts exposed
2,192,857
Breach date
10 Oct 2019
Added to tracker
30 Oct 2020
Data classes
7
What happened
In October 2019, the Minnesota-based news service StarTribune suffered a data breach which was subsequently sold on the dark web. The breach exposed over 2 million unique email addresses alongside names, usernames, physical addresses, dates of birth, genders and passwords stored as bcrypt hashes. The data was provided to HIBP by dehashed.com.
Exposed data
Dates of birth
Email addresses
Genders
Names
Passwords
Physical addresses
Usernames
Recommended actions
- Change your StarTribune password immediately, and update it anywhere you reused the same password.
- Enable two-factor authentication on the affected account and on your critical services (email, banking).
- Watch for targeted phishing emails referencing StarTribune โ attackers weaponise breach data quickly.
- Exposed identity data raises identity-theft risk โ consider credit monitoring or a credit freeze.
- Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected?
Check whether your email address appears in this breach.
Check on HIBP