Hi Guys,

Have you ever used an address book app called Covve?

Covve – 22,802,117 breached accounts

In February 2020, a massive trove of personal information referred to as “db8151dd” was provided to HIBP after being found left exposed on a publicly facing Elasticsearch server. Later identified as originating from the Covve contacts app, the exposed data included extensive personal information and interactions between Covve users and their contacts. The data was provided to HIBP by dehashed.com.

Please take the following actions if you have ever used Covve

  • Change your password right away and never use the same password twice (see my article on credential stuffing below)
  • Send an email to them and let them know that you are aware of the breach and ask them to provide you with Identity protection and credit Monitoring services.

Please let me know if you need any help in relation to this.

Max Roberts,
Incognito Privacy Care