Threat Glossary

What is a data breach?

A data breach is any security incident in which confidential or protected information — such as passwords, email addresses, financial details, or personal identifiers — is accessed, exposed, or stolen by someone not authorized to have it.

When a company you use gets breached, the fallout doesn’t stay with the company — it lands on you. Your reused password, your email, your phone number, or your card details end up in a file that circulates among criminals for years. Understanding how breaches happen and what to do when you’re caught in one is the difference between a minor annoyance and a drained account. Here’s the full picture.

How data breaches happen

Breaches come from a mix of technical failures and human error. The most common causes include:

  • Stolen or weak credentials. An attacker logs in with a phished, reused, or guessed password — the leading cause of breaches.
  • Phishing and social engineering. An employee is tricked into handing over access or running malware.
  • Unpatched vulnerabilities. Attackers exploit known flaws in software that wasn’t updated.
  • Misconfigured systems. An exposed database or storage bucket left open to the internet with no password.
  • Insider threats and lost devices. A malicious or careless insider, or a stolen laptop, leaks data.

What gets exposed — and why it matters

Not all breached data is equal. Email addresses and names fuel spam and phishing. Passwords — especially reused ones — enable credential stuffing and account takeover across every other site you use. Phone numbers feed SIM-swap reconnaissance. Dates of birth, addresses, and government IDs enable full identity theft. And because breach data is aggregated and resold, a single leak often ends up combined with older ones into a rich profile that outlives the original incident by years.

Real-world scale

Some of the largest breaches on record have exposed billions of records at once — email providers, social networks, hotel chains, credit bureaus, and identity-verification companies have all suffered incidents affecting hundreds of millions of people. The practical takeaway is simple: if you have used the internet for any length of time, some of your data is almost certainly in a breach corpus already. The question is not whether, but which accounts and how exposed — and that is something you can actually check.

How to protect yourself

Concrete steps you can take today to reduce your exposure.

Find out what leaked

Scan your email against known breach datasets to see which of your accounts, passwords, and details are exposed and in which breaches.

Change affected passwords first

Rotate the password on any breached account immediately, and anywhere else you reused it. Start with email and financial logins.

Enable two-factor authentication

Add a second factor to your important accounts so a leaked password alone can’t open them.

Watch for phishing that references the breach

Attackers exploit breach news with tailored scam emails and calls. Be skeptical of urgent messages that cite the leaked service.

Freeze or monitor your credit

If financial or identity data leaked, place a credit freeze and monitor for fraudulent accounts opened in your name.

Monitor for future exposure

Breaches keep happening. Ongoing monitoring alerts you the moment a new one includes your data, so you can rotate credentials before they’re abused.

Frequently asked questions

How do I know if my data was in a breach?

You can check your email address against aggregated breach datasets, which will show which known breaches include your information and what type of data was exposed — passwords, phone numbers, addresses, and so on.

What should I do immediately after a data breach?

Change the password on the affected account and anywhere you reused it, enable two-factor authentication, watch for phishing that references the breach, and — if financial or identity data was exposed — consider freezing your credit and monitoring for fraud.

Can I remove my data from a breach?

You cannot recall data that has already leaked — once a breach file circulates, it circulates. What you can do is neutralize its value: change the exposed passwords, secure the accounts, and remove related personal data from data brokers so the leaked details can’t be combined into something more dangerous.

See what’s exposed about you — free

Attackers start with the data that’s already public: your leaked passwords, your breached accounts, and your address on data-broker sites. Run a free scan to see exactly what’s out there about you — then remove it.

The first scan is free with no signup. Broker removals are filed as your authorized agent under CCPA and state-equivalent law. Your results are private to you — we never sell your data.