Looks like a pretty decent sized data breach happened the other day.
I received some extortion spam which I just found this arvo which said they knew my password, and yes the password WAS correct albeit very, very old and no longer in use.
Did some poking about and found the above link from Troy Hunt and my email pops up in haveibeenpwned.com with Collection #1 being one of the breaches.
https://www.forbes.com/sites/kateoflahe ... b0f33a2a2eIt appears to comprise multiple breaches across a number of services including 2,000 databases.
Hunt says there are many legitimate breaches in the directory listing, but he cannot yet verify this further. “This number makes it the single largest breach ever to be loaded into HIBP,” he adds in a blog.
What’s more, his own personal data is in there “and it's accurate”, he says. “Right email address and a password I used many years ago. Like many of you reading this, I've been in multiple data breaches before which have resulted in my email addresses and yes, my passwords, circulating in public.”