A compiled dataset of personal records was discovered in January 2021 by researchers at Night Lion Security. The corpus contained more than 11 million unique email addresses paired with an unusually broad set of personal fields drawn from multiple unidentified sources.\n\nThe records included names, physical and IP addresses, phone numbers, dates of birth, employer details, income levels, and credit-status information. Some entries also contained social security numbers, driver's license details, bank account numbers, health insurance information, and personal health data. Fields varied by the source breach each record was drawn from. The original organizations responsible for the underlying leaks were never publicly attributed.\n\nBecause the data spans government identifiers, finance, and health, the practical risk to affected individuals is unusually severe. The combination of name, date of birth, and SSN supports synthetic identity fraud and identity-verification bypass. Bank account and health-insurance data extend exposure into ACH fraud, medical identity theft, and insurance abuse. Anyone whose data may have been included should monitor credit reports, place fraud alerts where available, and treat any unsolicited financial or medical correspondence with caution.

Unverified multi-source personal data corpora typically aggregate identity, contact, and account-linked records from unclear or mixed origins into a generalized exposure dataset.

The compilation was discovered in January 2021 by Night Lion Security and added to public breach-tracking services shortly afterward. No definitive attribution has been published in the years since, and the original breached entities remain unidentified. Records from broad compilations of this type tend to recirculate on data-broker forums, dark-web marketplaces, and aggregated leak sites for years after first surfacing, particularly when they include high-value identity and financial fields. There has been no public regulatory action tied to the corpus.