Back to Radar
AV

Avvo

High

Avvo's December 2019 breach leaked 4.1M email addresses and SHA-1 hashed passwords.

Records exposed
4,101,101 records
Breach date
Breach Dec 17, 2019
Last update
Updated Apr 15, 2022
Source

What data was exposed?

Fields reported as compromised in this breach record.

Email addressesPasswords

Why does this breach matter?

In-depth analysis of the breach and its implications.

In December 2019, a data breach concerning the lawyer directory service Avvo was disclosed, reportedly involving the unauthorized exposure of user data on a hacking forum. The compromised data included over four million unique email addresses and hashed passwords encrypted using SHA-1. Attempts to confirm the breach with Avvo were initially unsuccessful; however, verification was later achieved through comparisons with known user data.

Impact Analysis

Understanding the scope and consequences of this breach.

User Impact
Users’ email addresses and password security were compromised, increasing risks of account misuse and phishing attempts.
Business Impact
Avvo experienced reputational harm and legal scrutiny, highlighting vulnerabilities in data security practices.
Affected Sectors
  • Legal Services
  • Online Directories
Geographic Impact
  • Global

What You Should Do

Recommended actions to take in response to this breach.

If You Were Affected

  • Change your Avvo account password immediately.
  • Enable two-factor authentication if possible.
  • Monitor your accounts for unauthorized activity.

Preventive Measures

  • Use strong, unique passwords for all accounts.
  • Employ reputable password managers to securely store credentials.
  • Participate in regular security awareness training.

Frequently Asked Questions

Common questions about this breach and what it means for you.

Check via tools like 'Have I Been Pwned' using your email address.