Orbis database of executive contact data, operated by Bureau van Dijk (Moody's)
Around August 2021, hundreds of gigabytes of business data compiled from public sources via Bureau van Dijk’s Orbis product were obtained from a BvD customer and later published on a hacking forum. The corpus (around 426GB / 484 million lines) contained 27,917,714 unique email addresses along with names, phone numbers, dates of birth, physical (largely corporate) addresses, job titles, company names, and some tax identifiers. BvD stated its own systems were not breached.
ObscureIQ assessment: High risk because the data is already organized for entity resolution and business targeting. Exposure enables executive profiling, spearphishing, and business relationship mapping at scale.
The business-contact and identity data supports large-scale spear-phishing and business-email-compromise reconnaissance; because it is aggregated from a data-broker product, individuals had no direct relationship with the source.
Bureau van Dijk, a Moody’s company, aggregates business and corporate information (including its Orbis product) covering companies and associated individuals worldwide.
Public-business intelligence corpora aggregate executive identity, company records, corporate ownership, and public-business profile data into searchable commercial datasets.
Bureau van Dijk stated there was no unauthorized access to its own systems; the leaked corpus came from a customer of its Orbis product and was published to a hacking forum.
Field names are shown in full for clarity and search visibility. Canonical machine keys are emitted only in this page’s structured data.
If you believe your information may be included:
Around August 2021, hundreds of gigabytes of business data compiled from public sources via Bureau van Dijk’s Orbis product were obtained from a BvD customer and later published on a hacking forum. The corpus (around 426GB / 484 million lines) contained 27,917,714 unique email addresses along with…
Verified fields include Date of Birth, Email Address, Full Name, Job Information, Phone Number, Physical Address.
Change reused passwords, enable MFA, and (if identity or financial data is involved) freeze your credit and monitor your accounts.
Every claim on this page is traceable. This breach draws on:
Enter your email to check whether your data appears in this breach. We’ll send a 6-digit code to confirm it’s your address.
Be the first to know when new breaches are disclosed. Free forever — confirm your email with a 6-digit code.
Executives, public figures, and high-visibility operators can receive tailored exposure intelligence and hardening guidance.
Request Consultation