Blog

The Addka72424 3.3B email compilation is not a single-company breach, but a large aggregation of email addresses from prior breaches and combolists. leaksear.ch indexes 61.3M email records from the corpus, creating a useful exposure check for phishing and credential-stuffing risk.

A ShunFeng/SF Express dataset indexed by leaksear.ch contains 59.7 million courier customer records with names, phone numbers, and full shipping addresses. Public reporting shows SF Express has previously faced allegations involving courier customer data, but the source of this indexed dataset remains unconfirmed.

A Telegram-related compilation indexed by leaksear.ch contains 1.6 million records with emails, names, phone numbers, usernames and Telegram identifiers. The data appears to be an aggregated multi-source package rather than a confirmed breach of Telegram’s core systems.

A Russian National Tourist Office dataset indexed by leaksear.ch contains 728 booking and visa application records tied to an exposed RNTO UK server. The records include names, passport numbers, postal addresses, visa dates, booking references, cardholder names, and pricing.

A leaksear.ch index covers nearly 5 million AT&T 2023 records tied to a third-party marketing vendor incident that AT&T said affected about 9 million wireless accounts. The exposed data includes emails, names, phone numbers, billing account numbers, device details, ZIP codes, and upgrade-eligibility data, but not SSNs, payment cards, or passwords.

A dataset indexed by leaksear.ch contains 80,361 Allure Clinics records tied to a September 16, 2025 KillSec ransomware incident. The exposed data includes patient names, phone numbers and health-related attributes, creating phishing and privacy risks.

A Facebook-targeted credential-stuffing combo list contains 1.3 million email, username, and plaintext password pairs. The dataset is described as aggregated from prior public breaches and infostealer logs, not a new breach of Facebook itself.