Wishbone (2020)


In January 2020, the mobile app to "compare anything" Wishbone suffered another data breach which followed their breach from 2016. An extensive amount of personal information including almost 10M unique email addresses alongside names, phone numbers geographic locations and other personal attributes were leaked online and extensively redistributed. Passwords stored as unsalted MD5 hashes were also included in the breach.

Domain Entries Date Breached Hashing Privacy acknowledged?
https://wishbone.io 9,705,172 2020-01-27 MD5 Public No

Information leaked

Auth tokens, Dates of birth, Email addresses, Genders, Names, Phone numbers, Usernames, Passwords


Notice any errors/mistakes in this breach entry? Please contact us and we will fix it ASAP. We strive to be the best and most accurate, so your contribution(s) will be greatly appreciated.