- Total Records33,726,800
- Unique Emails26,203,613
- Unique Email Providers560,776
- Unique Passwords20,113,114
- Unique Usernames33,435,363
LiveJournal 2017 Data Breach: What Happened and What Was Exposed?
In early 2017, LiveJournal, the widely used blogging and social networking platform, suffered a serious data breach that would later impact millions of its users. Attackers managed to access a large database containing over 33 million records, including unique usernames, email addresses, website URLs, and unencrypted passwords. While the breach itself occurred in 2017, the stolen data didn't surface publicly until two years later, when it began circulating within cybercriminal communities. By May 2020, discussions and shares of this compromised information were widespread on popular hacking forums, bringing renewed attention to the scale and scope of the incident.
Timeline of the LiveJournal Breach
The LiveJournal breach actually took place in January 2017, but most users and the wider public remained unaware of the incident for some time. For several years, details of the breach stayed mostly within closed circles. It wasn't until early 2019 that the stolen data began to leak more widely, culminating in major releases on multiple underground forums by May 2020. This lag between breach and public exposure likely increased the risk for affected users, as many may have continued using the same credentials elsewhere.
Scope and Impact
LiveJournal's breach exposed massive amounts of user information. More than 33 million individual records were compromised, with unique details for around 26 million accounts. The most concerning aspect was the inclusion of plain text passwords in the database. This made it easier for attackers to attempt credential stuffing attacks or access related services where users may have reused their login details. Both email addresses and usernames were among the leaked data, further contributing to the risk of phishing or impersonation attempts.
What Data Was Leaked?
- Email addresses
- Usernames
- URL information tied to user accounts
- Passwords in plain text
This combination of credentials and contact details makes the dataset highly valuable for malicious actors. Anyone affected by the breach faced heightened dangers from spam, targeted phishing, and account takeover attempts, especially if their LiveJournal password was used on any other websites or services.
Frequently Asked Questions
What happened in the LiveJournal breach?
In 2017, attackers gained unauthorized access to a major LiveJournal database, stealing more than 33 million user records including emails, usernames, URLs, and plain text passwords. The data began circulating widely on hacking forums in 2019 and 2020.
How many accounts were affected by the LiveJournal breach?
The breach impacted over 33 million user records, covering about 26 million unique accounts with identifiable usernames and email addresses.
What information was leaked in the LiveJournal data breach?
The compromised data included users' email addresses, usernames, URLs connected to user profiles, and unencrypted passwords.
When did the LiveJournal breach happen?
The original breach occurred in January 2017, though the stolen data only became widely available in hacker communities from 2019 onwards.
How can I check if I'm in the LiveJournal breach?
You can check if your information was part of the LiveJournal breach by utilizing the DeHashed search engine.