A dataset attributed to Tigo, a video chat and dating platform, has been indexed by leaksear.ch with 10,312,198 records and a listed breach date of March 31, 2023 (leaksear.ch metadata). Tigo is publicly described as a real-time chat app with 10M+ downloads on Google Play and as a 1-on-1 video chat platform on its website (play.google.com, tigo.chat).
What happened
Have I Been Pwned's public Tigo entry says that in mid-2023, 300GB of data containing more than 100 million records from the Chinese video chat platform was discovered, dating back to March 2023 (haveibeenpwned.com). HIBP reported 700.4 thousand affected accounts, added the incident on July 24, 2023, and said Tigo did not respond to multiple disclosure attempts (haveibeenpwned.com).
The leaksear.ch dataset covered here is the 10,312,198-record index described in the supplied metadata, which lists March 31, 2023 as the breach date (leaksear.ch metadata). The public sources reviewed do not confirm a root cause such as ransomware, scraping, a third-party compromise, or misconfigured storage, so the exposure mechanism should be treated as unconfirmed.
What data was exposed
The leaksear.ch indexing metadata lists searchable pivots for country, email address, IP address, name, phone number, and username (leaksear.ch metadata). Stored fields also include account IDs, profile photos or avatars, gender, language, timezone, client IP data, device IDs, phone model, operating-system and platform details, app version, channel information, registration and activity timestamps, login type, and VIP or recharge-related metadata (leaksear.ch metadata).
HIBP's public Tigo entry separately lists compromised data categories including device information, email addresses, genders, geographic locations, IP addresses, names, profile photos, usernames, and private messages (haveibeenpwned.com). Private messages are not listed in the supplied leaksear.ch searchable or stored field metadata for this indexed dataset.
Why this matters
The combination of contact details, usernames, profile photos, device information, IP addresses, and activity metadata can help attackers build credible phishing lures or link a Tigo profile to accounts on other services. Because Tigo is a video chat and dating context, exposure of names, photos, gender, phone numbers, and usage metadata may also increase harassment, doxxing, and social-engineering risks. Security teams should watch for Tigo-themed phishing, account-recovery abuse, and employee exposure where corporate emails or reused usernames appear. If you used Tigo, search leaksear.ch for your email, username, name, phone number, IP address, or country to check whether your data appears in this leak (leaksear.ch metadata).
Check your exposure
Vetted researchers and incident-response teams can request access or sign in if they already have access to check this dataset. Searchable pivots for this leak include country, email, ip address, name, phone, and username.