In December 2018, the video messaging service Dubsmash suffered a data breach. The incident exposed 162 million unique email addresses alongside usernames and PBKDF2 password hashes. In 2019, the data appeared listed for sale on a dark web marketplace (along with several other large breaches) and subsequently began circulating more broadly.

Domain Entries Date Breached Hashing Privacy acknowledged?
https://dubsmash.com 161,749,950 2018-12-01 PBKDF2 Public Yes

Information leaked

Email addresses, Geographic locations, Names, Passwords, Phone numbers, Spoken languages, Usernames

Notice any errors/mistakes in this breach entry? Please contact us and we will fix it ASAP. We strive to be the best and most accurate, so your contribution(s) will be greatly appreciated.