Data breaches: breachCompilation, collection1, breach compilation



I'm looking for help on how to solve the following breaches: breachCompilation, collection1, breach compilation

I have no idea where to start, so any assistance would be helpful.


  • I have the same question about breachCompilation, please.

  • Hi #BitDefender… it would be really useful if you could answer this question for us customers…. Please…

  • Same here. Feels the this protection is useless if I can’t see the source of the breach or correct it.

  • I agree. These identifiers don't help anyone know which web site account needs to be secured.

    I'd rather not mark these as solved, but the alternative is potentially overlooking future alerts for that email address due to the "leaks found" status becoming permanent. Neither is a great option.
  • man ! i wish i got an answer for this

  • yes it sucks to get the warning without any resolution proposal! :(

    breachCompilation 2017

    breach compilation 2021 compilation 2020


  • Agree, please @Andy_BD I see you are an admin, can you help us?

    I have a list of data breaches that are not related to any website but just random words: compilation


    data enrichment records


    breach compilation

    How am I supposed to know the websites where the data breach happened so I can change the password or delete the account all together?

  • Hi,

    A bit late to the party, but I will do my best to provide further clarification regarding the data breaches.

    To find stolen data, we scan the dark corners of the web using various methods. Once the data is found, we use a proprietary system for identity resolution to discover the identity of the breached individual, so we can alert the person about the breach, even if the breach itself includes little or outdated information.

    Most commonly, breaches include information about users’ emails, passwords, names and usernames, phone numbers, and physical addresses. Their exposed data creates a snowball effect that ultimately leads to the leak, sale, or trade of entire digital identities on the Dark Web.

    Breaches are not necessary found on a specific website.

    They are in a compilation of usernames, passwords, phone numbers, etc. found in archives or texts on the Dark Web, in general.

    The Digital Identity Protection service raises awareness about your Digital Footprint (data exposed in Surface Web) and remediation steps for data breaches (data exposed in Dark Web). However, you would not be able to change the username for a specific website, but you will be informed that in that specific period, data about you has appeared in data lists on the dark web.

    This means that you could become victim of a scam. As the purpose is to raise awareness of these breaches and the data involved can be various, there are no mitigation steps for the situation. If the breach was about a password, you could have changed it, but the breach can also involve other types of data, such as phone numers, address, etc. And if these are listed somewhere on the dark corners of the web, there is no possible way to retrieve or delete them from there, because you don't have control over that leaked information.

    I hope the information is helpful.

  • Alexandu_BD, thank you for your time to answer this topic.

    But, if I well understand, this information can't really help us. These warnings just tell us something like "Be more carefull on websites. Bitdefender has find your email in darkweb and there is a possibility your personal information has been stolen."

    Because we can't know which website and/or hacker took your email and can't know if these information will be used.

    It can be used just for spam or in a worst goal.

    But now, with your help, we know what these warnings are for and it is a good information to get even if we can't really do something at the moment we receive them, except change all our passwords. But in my case I have to many connexions to change them all.

    But I really thank you again for your answer. :-)

  • Hi @Keluode,

    You are most welcome 😉

    Stay safe

  • I’m still not sure what I can do about this. Any guidance?

  • Hello @JKK and thank you for joining the conversation.

    Unsure what to do about what, exactly? Are you referring to the data breaches information found by the Digital Identity Protection service? If yes, check my above comment for a detailed explanation on how the service works:


  • I really do not understand the lack of information provided by BitDefender... Many financial institutions and credit reporting agencies provide the same service, however, they tell you exactly what information was compromised eg. url, username, email address, password, date of birth, phone number, driver’s license, social etc. etc. - the list goes on. In a nutshell, I find Bitdefender’s offering lacking and utterly useless.

  • Hello @ae1 and thanks for joining the conversation.

    Regarding your observation, the Digital Identity Protection service will receive new features and considerable improvements in the coming months, providing the user with more details and actions for the data found on the internet.

    Upcoming changes will significantly improve DIP functionality and expand its capabilities, allowing for more control and specific actions that can help the user regain ownership of their personal data.