Ulmon

In January 2020 the travel application Ulmon experienced a significant data breach affecting approximately 1.3 million records. The leaked dataset included 777 thousand unique email addresses along with names and phone numbers. Security researchers discovered that the data contained passwords hashed using the Bcrypt algorithm and biographical information. The breach was attributed to an insecure database or server vulnerability that allowed unauthorized access. Following the incident the stolen database was uploaded and distributed on a well known underground hacking forum for public download.