ADVERTISEMENT

Car maintenance company leaks 12.7k US phone numbers, emails and MD5 unsalted passwords

Xado US leaks thousands of US phone numbers, emails and MD5 unsalted passwords
Bernard Meyer
Bernard Meyer Senior Researcher
Sep 17, 2020 Updated: 28 September 2021 2 min read
The Xado.us database leak made available for free on a Russian hacker forum

Who is the company behind the leak?

Sample of the Xado.us leaked data
ADVERTISEMENT

Who had access to the data?

What’s the impact of the leak?

Next steps

  • Hash your passwords properly, with something like the National Institute of Standards and Technology (NIST)-recommended SHA-256 or better
  • Salt your passwords
  • Patch your system, including your CMS, since breaches normally happen due to an outdated or unpatched system, weak password, or access control issues 
  1. Check our personal data leak checker to see if your email address is included in the leak.
  2. If your email address was leaked, you should change your password immediately. We recommend using a password manager to store your passwords.
  3. Watch out for suspicious emails, as they may be phishing attempts. Avoid clicking on links from suspicious emails.
ADVERTISEMENT