Concerning thing here is the way this data is structured with interactions between people as well as private information like job titles and phone numbers.

https://www.troyhunt.com/the-unattributable-db8151dd-data-breach/

Bloody hell

Indeed, the source is still TBD too.

I would say that UUID on the data will make it traceable to somewhere, it may transpire where and how it got leaked in the near future.

The suggestion was that the data was related to linkedin as people could only find their 'special' linkedin email in the breach.

 

I do the same - linkedin@domain.com as I do for everything e.g. securitywarehouse@domain.co.uk which means compromise on one only hands over the keys to all if the passwords are the same

(sometimes they are, sometimes not) and a switched on human spots that they need to substitute the recipient part of the email - and it is not always as plain and obvious. My paypal login for example,

is NOT paypal@domain.com.

 

I've tried on the 'Have I Been Pwned' site and cannot find anything for any of my domains let alone the linkedin one

 

In fact, searching my surname suprisingly only brings up a single result I know isn't me as it relates to a single ancient exploit of a forum on a weed smoking enthusiasts site!

Edited May 16, 20205 yr by datadiffusion
Forgot this was public, domain redacted

I feel it's source is from some social platform like that or something like a calender app that links all these together e-mail, meetings with contact details etc. Even having separate email usernames only narrows it down so far.

Don't think it's right to speculate TBH you can cause an unnecessary panic, people that are around these breaches have been trying to find the source for several months now, it's taken that long to add it all on to HIBP.

The one piece of information to take away from these breaches is don't re-use passwords.

 

All my passwords are M1ngeM@ster69

10 minutes ago, MrHappy said:

All my passwords are M1ngeM@ster69