Ancestry

In November 2015 the genealogy website RootsWeb owned by Ancestry.com suffered a security breach that was not discovered until December 2017. A security researcher found a file on a public server containing login credentials for approximately 300000 users. The incident involved the exposure of email addresses and plaintext passwords that were part of the RootsWeb surname list archive. Ancestry confirmed that the exposed data was legitimate and subsequently took the RootsWeb service offline to address the vulnerability and secure user accounts.