Bukalapak

In October 2017, Bukalapak, an Indonesian e-commerce platform, suffered a data breach exposing 13 million users' personal data, including emails, usernames, IPs, and hashed passwords. The breach became public in March 2019, when a hacker listed the data for sale on the dark web. In May 2020, reports surfaced that the stolen data was still being sold, though the company denied any new breaches.

Data Included in the Breach