In March 2020, was provided to HaveIBeenPwned (HIBP) a massive database of personal information initially attributed to a German company called LeadHunter after being found exposed on a public Elasticsearch server.
At the time of publication, the breach could not be attributed to any person responsible for obtaining and exposing it and the data were provided to HIBP by dehashed.com.
LeadHunter is a telemarketing company based in Germany and it sounds precisely like the kind of organization that would have this data in the first place. However, They were not the source of the data because they do not align with the way they run their businesses, the type of data, volume, and neither does Elasticsearch infrastructure.
LeadHunter is a very generic term that with a simple Google search shows us many different possible sources that use the same name. Of the 110 million records we found 69 millions of unique email addresses and personal information, including names, phone numbers, Genres and physical addresses.
Many of these records contain WHOIS information, but many others do not. Although it is not known where this data came from, We can also find very generic company data (Business Type, Annual Revenue, year in which it was founded).