
Tangerine
What Happened
In February 2024, the Australian Telco Tangerine suffered a data breach that exposed over 200k customer records. Attributed to a legacy customer database, the data included physical and email addresses, names, phone numbers and dates of birth. Whilst the Tangerine login process involves sending a one-time password after entering an email address and phone number, it previously used a traditional password which was also exposed as a bcrypt hash.
Compromised Data
Recommended Actions
Change Your Password
If you haven't changed your password on this service since the breach, do so immediately.
Enable Two-Factor Authentication
If 2FA is supported, add an extra layer of security to your account.
Use a password manager to generate and store strong, unique passwords for all your accounts. 1Password helps protect your data with industry-leading security.
Try 1PasswordBreach Overview
-
Affected Accounts:
243.5 thousand
-
Breach Occurred:
February 2024
-
Added to HIBP:
28 Feb 2024
Recommended Actions
Change Your Password
If you haven't changed your Tangerine password since 2024, do so immediately.
Enable Two-Factor Authentication
Add an extra layer of security to your account.