Information from dark web marketplaces, including vendor names, product listings, and public reviews.
Lists of "email:password" pairs used by threat actors for Credential Stuffing attacks (trying the same password on multiple sites like Netflix, Amazon, or banking portals). BadOnion_Collection_May2017_to_April2020.zip
If your data is in this collection, it likely means a service you used between 2017 and 2020 was compromised. If you haven't changed your primary passwords since
If you haven't changed your primary passwords since early 2020, do so immediately and ensure you use a unique password for every site. These collections often exceed several gigabytes and contain
Exports from encrypted messaging platforms or private forum threads used by cybercriminals. Security Risks & Implications
This is a "combo list" or "leak aggregator." It typically contains raw data scraped from hidden services (Tor network), including credentials (usernames/emails and passwords), database dumps, and forum posts.
These collections often exceed several gigabytes and contain millions of unique entries. Common Components