ShellCodeX
Tools โ€ข Events โ€ข News โ€ข Insights
ShellCodeX Breach Report

XKCD Data Breach

xkcd.com
Limited exposure
Verified breach Passwords exposed
Accounts exposed 561,991
Breach date 01 Jul 2019
Added to tracker 01 Sep 2019
Data classes 4

What happened

In July 2019, the forum for webcomic XKCD suffered a data breach that impacted 562k subscribers. The breached phpBB forum leaked usernames, email and IP addresses and passwords stored in MD5 phpBB3 format. The data was provided to HIBP by white hat security researcher and data analyst Adam Davies.

Exposed data

Email addresses IP addresses Passwords Usernames

Recommended actions

  • Change your XKCD password immediately, and update it anywhere you reused the same password.
  • Enable two-factor authentication on the affected account and on your critical services (email, banking).
  • Watch for targeted phishing emails referencing XKCD โ€” attackers weaponise breach data quickly.
  • Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected? Check whether your email address appears in this breach.
Check on HIBP