
NetGalley
What Happened
In December 2020, the book promotion site NetGalley suffered a data breach. The incident exposed 1.4 million unique email addresses alongside names, usernames, physical and IP addresses, phone numbers, dates of birth and passwords stored as salted SHA-1 hashes. The data was provided to HIBP by a source who requested it be attributed to pom@pompur.in.
Compromised Data
Recommended Actions
Change Your Password
If you haven't changed your password on this service since the breach, do so immediately.
Enable Two-Factor Authentication
If 2FA is supported, add an extra layer of security to your account.
Use a password manager to generate and store strong, unique passwords for all your accounts. 1Password helps protect your data with industry-leading security.
Try 1PasswordBreach Overview
-
Affected Accounts:
1.4 million
-
Breach Occurred:
December 2020
-
Added to HIBP:
23 Feb 2021
Recommended Actions
Change Your Password
If you haven't changed your NetGalley password since 2020, do so immediately.
Enable Two-Factor Authentication
Add an extra layer of security to your account.