ShellCodeX
Tools โ€ข Events โ€ข News โ€ข Insights
ShellCodeX Breach Report

Unverified Data Source Data Breach

astoriacompany.com
Major exposure
Unverified
Accounts exposed 11,498,146
Breach date 26 Jan 2021
Added to tracker 24 Mar 2021
Data classes 14

What happened

In January 2021, over 11M unique email addresses were discovered by Night Lion Security alongside an extensive amount of personal information including names, physical and IP addresses, phone numbers and dates of birth. Some records also contained social security numbers, driver's license details, personal financial information and health-related data, depending on where the information was sourced from. Initially attributed to Astoria Company, they subsequently investigated the incident and confirmed the data did not originate from their services.

Exposed data

Bank account numbers Credit status information Dates of birth Email addresses Employers Health insurance information Income levels IP addresses Names Personal health data Phone numbers Physical addresses Smoking habits Social security numbers

Recommended actions

  • Watch for targeted phishing emails referencing Unverified Data Source โ€” attackers weaponise breach data quickly.
  • Monitor your bank and card statements closely and consider requesting a card replacement.
  • Stay alert for smishing (SMS phishing) and SIM-swap attempts using your phone number.
  • Exposed identity data raises identity-theft risk โ€” consider credit monitoring or a credit freeze.
  • Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected? Check whether your email address appears in this breach.
Check on HIBP