On April 2, 2018, a significant security incident came to light when a credential stuffing list called Pemiblanc was uncovered on a French server. This list contained a staggering 111 million email addresses and their corresponding passwords. Pemiblanc was compiled using data from various data breaches and was used by cybercriminals to conduct account takeover attacks on various online services. This incident highlights the dangers of password reuse across multiple platforms and the importance of strong password practices.
- Breach date: 2 April 2018
- Compromised accounts: 110,964,206