7,916,103
Records Exposed
May 2020
Date of Breach
Database
Breach Type
May 2024
Added to Database
About This Breach
In December 2022, Zacks, an investment research firm, reported a data breach. The following month, news surfaced about the breach impacting 820,000 customers. However, by June 2023, a dataset containing nearly 9 million Zacks customers surfaced and was subsequently widely circulated on a popular hacking forum. The latest data in this breach was dated May 2020 and encompassed names, usernames, email and physical addresses, phone numbers, and passwords stored as unsalted SHA-256 hashes. Upon disclosing the larger breach, Zacks stated that besides their initial findings, "the unauthorized third parties also gained access to encrypted passwords of zacks.com customers, albeit only in encrypted form".
Compromised Data Types
Country
United States
Language
English
Password Storage
Plaintext
Category
Financial
Indexed On
May 1, 2024
Breach Type
Database
What Should You Do?
Get Full Breach Details with LeakedSource Pro
Sign up for a LeakedSource Pro account to see exactly what data was exposed in this breach and get real-time notifications when your information appears in new breaches.
Sign Up for Pro- Change your password immediately on Zacks and any other site where you used the same password. Use a unique, strong password for each account.
- Watch for phishing emails targeting your inbox. Attackers may use your exposed email address to send convincing scam messages.
- Enable two-factor authentication (2FA) on all important accounts to add an extra layer of security.
- Use a password manager to generate and store unique, strong passwords for every account.
Were You Affected by This Breach?
Enter your email below to instantly check if your data was compromised in the Zacks breach and 12,000+ other known breaches.
