Upgrade for Free
Cybercrime is evolving. So is your protection. *Offer for existing members for the remainder of your subscription. Terms apply.
Learn more about the Dark Web notification
Applicable for: Android;Mac;Windows;iOS
When a company has a data breach, exposed information could be sold or traded on the dark web. If you use any of the websites where an alleged data breach has been reported, it is recommended that you change your passwords as soon as possible. We also recommend that you change the passwords of your accounts with similar usernames or logins.
Read Dark Web Monitoring for more help on protecting additional information that could be exposed in a data breach.
If you are a current Norton member, you do not need to contact us unless you have been informed that your personal information was used to commit identity theft, such as to take over current or open new accounts, file fake tax returns, rent or buy properties, or other criminal activities in your name.
If you are not a member, you can start your subscription online or by calling Member Services & Support.
Recent Breaches
| AT&T | Suffered a data breach in 2021. Now, in 2024, the same massive data set has been re-exposed. The information of 73 million AT&T customers includes names, addresses, phone numbers, and, for some, Social Security numbers and birthdates. |
| AT&T Phone number | Cybercriminals illegally downloaded customer data from a third-party platform, gaining access to text and call logs from May 1, 2022, to October 31, 2022. While logs were exposed, the contents of calls and text messages were not. With so many phone numbers compromised, it’s important to be on the lookout for possible phishing and smishing attempts. |
| Cloud storage data breach | The data theft appears to target users with weak passwords or pins, leading to confirmed phishing attacks. Employee credentials and customer information from many large global corporations, including email addresses, usernames, passwords, and more, were exposed. |
| Facebook data leak | The personal information of millions of Facebook users exposed in a 2019 breach has been leaked online by a user of a hacker forum. Cybercriminals could access this exposed data, which includes phone numbers, birth dates, email addresses, and other personal information of Facebook users included in the leak. |
| PowerSchool | PowerSchool suffered a breach on December 28th, 2024. A potential cybersecurity incident occurred when an unauthorized user accessed their student information system, resulting in the possible exposure of Social Security numbers, medical data, full names, addresses, and more for up to 50 million students and teachers. For more information, visit https://www.powerschool.com/security/sis-incident/ |
| RockYou2024 | Cybernews researchers discovered a file posted on July 4, 2024, on a popular hacking website that contained 10 billion unique passwords. This compilation of passwords substantially increases the risk for affected individuals to become victims of identity theft or a cyberattack. |
| Ticketmaster | This breach could compromise the personal information of nearly 560 million customers. Potentially exposed information includes full names, addresses, phone numbers, email addresses, and order history. |
| United Health Group | Announced a ransomware cyberattack that could affect the personal information of nearly one-third of its customers. The hackers published some of the stolen information on the dark web, threatening to release more if a ransom is not paid. Stolen information can include personal data and protected health info. If exploited, cybercriminals can use this information to commit identity theft. |
Past Breaches
| CafePress | We understand several sources have reported a possible breach of CafePress Inc., an American online retailer of stock and user-customized on-demand products. As a result, your information has been found on the dark web. |
| Canva | On May 24, 2019, Canva was made aware of a breach. In response to this, they have requested users to change their passwords and have reset the Auth token for user accounts connected to partners. |
| Chegg | In September 2018, Chegg was made aware of a breach that occurred in April earlier that same year. This affected approximately 40 million users. Because hackers were able to access customers' shipping addresses and email addresses, you should also be on the lookout for increased spam email messages, scams, or phishing attempts. |
| DoorDash | We recently became aware that an unauthorized third party accessed user data on May 4, 2019. Approximately 4.9 million consumers were potentially impacted for those who joined before April 5, 2018. Information potentially compromised could include names, email addresses, delivery addresses, order history, phone numbers, hashed/salted passwords, the last four digits of payment cards (not full numbers), the last four digits of bank account numbers (not full numbers), and the driver's license numbers for approximately 100,000 Dashers. While having this information breached does not mean someone has used it, it does mean that your information could be out there. DoorDash is reaching out directly to affected users with specific information that was accessed. While passwords may not have been breached, they advise resetting your account password at https://www.doordash.com/accounts/password/reset/. |
| EatStreet | On May 17, 2019, EatStreet was informed that an unauthorized party gained access to their database on May 3, 2019. The databases contained information about their Restaurant partners, including restaurant name, name on account, restaurant address, phone number, email and bank account, and routing number. |
| Evite | In April 2019, Evite was notified of a data security breach. They have required all users to change their passwords. If you don't remember your password, use the Forgot Your Password link on their Login page. You can learn more on their FAQ page. |
| Poshmark | On August 1, 2019 Poshmark announced that data from some users was acquired by an unauthorized third party. While the data did not include financial or physical information, it has been discovered that passwords may have been compromised. As of September 9th, all users will be required to change their passwords if they have not already done so after August 1st, as a precaution. You can read the security notice from Poshmark here. |
| MGM Resorts | Data security researchers discovered an online database containing the personal information of 10.6 million MGM Resorts guests exposed on a hacking forum recently. The exposed details include personal information such as full names, home addresses, phone numbers, email addresses, and date of birth from guest's stays from 2017 and earlier. MGM Resorts confirmed the incident and pointed out that the exposed information stems from a breach that occurred during the summer of 2019. |
| ShinyHunters | ShinyHunters, a hacker group, recently uploaded 386 million user records that they stole from 18 companies to a hacker forum. Some of the exposed data was previously disclosed on similar forums. Moreover, the exposed data was made available to anyone free of charge. It appears to consist primarily of email addresses, hashed passwords, names, and phone numbers. |
| Zynga | On September 12, 2019, Zynga announced that hackers may have illegally accessed player account information. While they don't believe any financial information was obtained, data that may have been accessed included the usernames and passwords of certain players of Draw Something and Words with Friends. |
*No one can prevent all cybercrime or identity theft.
Last modified: 01/23/2025
Was this article helpful?