ShellCodeX Breach Report
Straffic Data Breach
straffic.io
Verified breach
Accounts exposed
48,580,249
Breach date
14 Feb 2020
Added to tracker
27 Feb 2020
Data classes
5
What happened
In February 2020, Israeli marketing company Straffic exposed a database with 140GB of personal data. The publicly accessible Elasticsearch database contained over 300M rows with 49M unique email addresses. Exposed data also included names, phone numbers, physical addresses and genders. In their breach disclosure message, Straffic stated that "it is impossible to create a totally immune system, and these things can occur".
Exposed data
Email addresses
Genders
Names
Phone numbers
Physical addresses
Recommended actions
- Watch for targeted phishing emails referencing Straffic โ attackers weaponise breach data quickly.
- Stay alert for smishing (SMS phishing) and SIM-swap attempts using your phone number.
- Exposed identity data raises identity-theft risk โ consider credit monitoring or a credit freeze.
- Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected?
Check whether your email address appears in this breach.
Check on HIBP