leaked list of credit card PINs and a data analysis and here's one on iphone passcodes

This is one researcher's curated, normalised list of Ten Million Passwords. Here's a subreddit for the dataset.

.torrent file or magnet:

magnet:?xt=urn:btih:32E50D9656E101F54120ADA3CE73F7A65EC9D5CB

On the 27th October it was published that 000webhosting, a free web hosting provider, had been breached containing names, emails, plaintext passwords and more.

source: https://000webhost.thecthulhu.com/

magnet:?xt=urn:btih:6A497BB02B7EDC4D27E97D653373E89171D6BB96&dn=000webhost.thecthulhu.com%20Data%20Dump

SHA1: 86DA D728 BA4B DE7A 841B 18F9 825B 41D1 7E1D FF3D

SHA256: CDAF E38E 1E59 E11A 2705 DF44 95B6 4A6A 4C51 E6B5 F6C0 25AD 3435 9FE6 CCE2 8984

https://am.thecthulhu.com/first_release/ https://am.thecthulhu.com/second_release/

The following dump was allegedly taken from Dropbox sometime in 2012 following a breach. More information is available here on the story.

source: https://dropbox.thecthulhu.com/

magnet:?xt=urn:btih:E1A1E35E65454A08CDE363CB5EE42FA56841A0E7&dn=dropbox.zip

SHA1: 2AC8 FC86 5F52 E7D6 D695 A539 6F3A 27D6 1D01 440B

SHA256: 8381 265E A35E DEED 3B3E 982A 9416 3045 B887 8442 105F 3BB3 076A B3AE 841E 1A76

A group calling themselves the shadow brokers released an encrypted dump of equation group (NSA TAO) exploits and vulnerabilities. These targeted enterprise firewalls, anti-virus products and Microsoft products. They were going to auction the password but eventually just gave away a bunch of them for free. Included was FuzzBunch, the NSA's equivalent of Metasploit, allowing users to “hack into pretty much any Microsoft Windows NT/2000/XP/2003/VISTA/7/2008/8/2012 computer in the world”

original message from the shadow brokers

windows, linux exploits firewall exploits

HackingTeam is a Milan-based information technology company that sells offensive intrusion and surveillance capabilities to governments, law enforcement agencies and corporations. They got owned and their cracked software and exploits got leaked.

public statement from the hackers

mirror 1 mirror 2 google dork

This breach dates back to 2012, but was only release in May 2016 as a sale on a “dark net” market. Allegedly it contains email addresses and passwords, which were stored as a SHA1 hash without salting.

source: https://linkedin.thecthulhu.com/

magnet:?xt=urn:btih:8904DA9F6556DF55867EFD77D98C70ABF2A3D840&dn=LinkedIn.rar

SHA1: 8F17 1B24 EE31 8155 4C7A 2C3A 35B7 5BD4 979A BD93

SHA256: 3D45 C7DA BEBE CC32 39BD 1263 71C8 B77E D288 90B6 14C1 7157 3C85 4E56 D746 83D8

The following contains the alleged data breach from Myspace dating back a few years.

source: https://myspace.thecthulhu.com/

magnet:?xt=urn:btih:17E6FC94DAE0A3168301012C290A53A2BD314A28&dn=Myspace.com.rar

Decryption key: KLub8pT&iU$8oBY(*$NOiu

SHA1: 8C7E FFE4 3486 C617 E1B4 E295 DBF7 9E10 01AC 86BD

SHA256: 5FA0 5F95 1EFD DA18 8A2E 3D50 8948 1A4F AACA 311E C559 205F EB15 B2BB F7DE EC61

Nulled.io - a well known haven for exchanging the information of others has reportedly been breached, in quite a turn of irony.

source: https://nulled.thecthulhu.com/

magnet:?xt=urn:btih:B89DAFF033D4EBC19271C8BF3BCB1B6B88BF6B5B&dn=nulled_io.gz

SHA1: CEEC DE5A 331E 3D81 E06A 86F9 D471 21AB 545F 8E06

SHA256: 6D0D C413 8918 4CC4 52C9 ADFB 689F BEC4 8744 9297 BC36 AA4B B854 B306 E3AD BAC1

It was reported on the 1st October that Patreon had been “hacked” and some data as a result has been published on the internet.

source: https://patreon.thecthulhu.com/

magnet:?xt=urn:btih:B93B1C2921EFF0846DA268968755D01B6E9698DA&dn=Patreon%20Leak

SHA1: AA16 D5EC F9F9 A9BA 9A23 37C4 5861 74B2 6C36 2860

SHA256: 2AEE 2073 BCDB 0851 97FF E5B9 E878 9972 0B94 62EF 3B67 FEA5 1D62 D0D6 44E3 F61C

Recently, the CIA lost control of the majority of its hacking arsenal including malware, viruses, trojans, weaponized “zero day” exploits, malware remote control systems and associated documentation. This extraordinary collection, which amounts to more than several hundred million lines of code, gives its possessor the entire hacking capacity of the CIA. The archive appears to have been circulated among former U.S. government hackers and contractors in an unauthorized manner, one of whom has provided WikiLeaks with portions of the archive.

https://wikileaks.org/ciav7p1/index.html