In April 2019, the PDF management service Lumin PDF suffered a data breach. The breach wasn’t publicly disclosed until September when 15.5M records of user data appeared for download on a popular hacking forum. The data had been left publicly exposed in a MongoDB instance after which Lumin PDF was allegedly been "contacted multiple times, but ignored all the queries". The exposed data included names, email addresses, genders, spoken language and either a bcrypt password hash or Google auth token.
Domain | Entries | Date Breached | Hashing | Privacy | acknowledged? |
---|---|---|---|---|---|
https://luminpdf.com | 15,453,048 | 2019-04-01 | bcrypt | Public | Yes |
Information leaked
Auth tokens, Email addresses, Genders, Names, Passwords, Spoken languages, Usernames
Notice any errors/mistakes in this breach entry? Please contact us and we will fix it ASAP. We strive to be the best and most accurate, so your contribution(s) will be greatly appreciated.