What Happened
In approximately August 2021, Bureau van Dijk (BVD), a business intelligence firm owned by Moody’s Analytics, experienced a significant data breach when hundreds of gigabytes of data were obtained and published to a hacking forum. The breach exposed approximately 484 million records sourced from BVD’s Orbis product database, which contained detailed information about corporations and individuals. The compromised data included names, dates of birth, 28 million unique email addresses, physical addresses, phone numbers, and job titles. However, BVD clarified that there was no unauthorized access to its own systems; rather, the data came from a customer of their Orbis product and was collated from public sources. The incident was discovered and analyzed by the Organized Crime and Corruption Reporting Project (OCCRP) and its partners, and was later added to Have I Been Pwned in October 2023.
