What happened
According to public breach records, the iMesh data breach on September 22, 2013 is reported to have exposed the personal information of 49,467,477 accounts.
In September 2013, the media and file sharing client known as iMesh was hacked and approximately 50M accounts were exposed. The data was later put up for sale on a dark market website in mid-2016 and included email and IP addresses, usernames and salted MD5 hashes.
Passwords in this breach were reportedly stored as MD5 hashes.
iMesh, a media and peer-to-peer file-sharing service, had its user database compromised in September 2013, but the breach only surfaced in mid-2016 when LeakedSource obtained the data and it was offered for sale on a dark-web marketplace for about 1 bitcoin. The dump exposed roughly 49-51 million accounts, each containing an email address, username, IP address, and a password stored as a salted MD5 hash — a weak algorithm that is now easy to crack. Analysis of the recovered passwords showed extremely common choices such as "12345" (used by nearly a million accounts), underscoring how readily the credentials could be reused against other sites.
What data was exposed
The following types of personal data were compromised:
- Email addresses
- IP addresses
- Passwords
- Usernames
Breach details
| Detail | Value |
|---|---|
| Breach name | iMesh |
| Date | September 22, 2013 |
| Accounts affected | 49,467,477 |
| Domain | imesh.com |
This summary is compiled from public breach-notification data and known leak databases. Figures reflect what those sources report and may be revised as more is learned. If something here looks wrong or you think your information is involved, contact our support team.
We report breaches as a factual record to help people check their exposure. Inclusion here is not an allegation of wrongdoing or negligence by iMesh; it reflects a publicly reported security incident.
What to do now
Based on the data exposed in this breach, here are the steps you should take:
- Change your iMesh password and immediately update it anywhere you reused it — the passwords were only salted MD5 hashes, which are crackable into plaintext.
- Enable two-factor authentication on your email and any accounts that shared this password, since exposed email-plus-password pairs fuel credential-stuffing attacks.
- Be alert for targeted phishing emails referencing old accounts, as your email address and username were exposed and can be used to make scams look legitimate.
- Use a password manager to set a unique password per site so a single old leak like this can never unlock your other accounts.
Check your exposure
Data breaches are one of the ways your personal information ends up on data broker sites. Run a free scan to see which sites are exposing your personal data — and take action to remove it.
Sources
- Have I Been Pwned: iMesh Data Breach
- 50 Million Hacked iMesh User Credentials For Sale - Infosecurity Magazine
Find out what data brokers know about you
Run a free scan to see which sites are exposing your personal information — name, phone, address, email, and more.
Start your free scan →