Check if you've been compromised in massive data breach

accreditation

Johannesburg - The website which revealed the massive data breach involving 50 million South Africans, has now loaded a search function for people to find out if their email address has been compromised.

Troy Hunt, founder of the free service Have I Been Pwned (HIBP), which aggregates data breaches and initially revealed the data breach, uploaded the compromised email addresses to the website. They can be found here.

Latest updates on the data breach:

While other information such as ID numbers, employer information and estimated salaries are available, Hunt chose only to upload victims' email addresses.

“I've loaded the 2.2 million unique email addresses in the data set into HIBP. You can search for your email there now and it will give you a yes or no answer as to whether it exists, but obviously the addresses only represent a small portion of the overall data set,” Hunt said in a blog post on Thursday.

“I do not have any plans to make the personal identification numbers searchable. Given the sensitivity of that data, it's not information I want to be responsible for managing on a service like this. However, given the size of the data as compared to the population of South Africa, there's an extremely high likelihood that anyone with an ID is in the data set,” he added. 

Hunt said that he received the file in March.  

“Someone sent me a 27GB file called 'masterdeeds.sql' which was a MySQL database backup file. There was nothing immediately remarkable about it; there was no clear indication of a source (many similar examples include the source website in the file name) and there were 'only' 2.2 million email addresses in the file (I was dealing with breaches containing tens or even hundreds of millions of records at the time).

"It went into an archive folder with literally hundreds of other similar files which, time permitting, I'd (sic) come back to and review later,” his blog post read. 

Earlier this week, Fin24 reported that this could be the biggest ever breach of the Protection of Personal Information Act.

The leaked database also contains names of people, their gender, ethnicity, home ownership and contact information. 

SUBSCRIBE FOR FREE UPDATE: Get Fin24's top morning business news and opinions in your inbox.

Read Fin24's top stories trending on Twitter:


We live in a world where facts and fiction get blurred
In times of uncertainty you need journalism you can trust. For only R75 per month, you have access to a world of in-depth analyses, investigative journalism, top opinions and a range of features. Journalism strengthens democracy. Invest in the future today.
Subscribe to News24
Rand - Dollar
15.30
+1.5%
Rand - Pound
20.84
+1.3%
Rand - Euro
17.36
+1.3%
Rand - Aus dollar
11.06
+0.9%
Rand - Yen
0.13
+1.2%
Gold
1,841.72
+1.5%
Silver
24.15
+2.9%
Palladium
2,011.00
+5.6%
Platinum
1,031.50
+4.7%
Brent Crude
87.51
+1.2%
Top 40
69,513
+1.8%
All Share
76,176
+1.6%
Resource 10
77,000
+3.2%
Industrial 25
95,623
+1.4%
Financial 15
15,206
-0.9%
All JSE data delayed by at least 15 minutes Iress logo
Company Snapshot