Anti Public 2016 Data Breach
ObscureIQ Breach Intelligence
Low SeverityWebsite / service breach
Anti Public Combo List: 1.1 Billion Stolen Email & Password Pairs Used for Credential Stuffing
Aggregated stolen credentials and password pairs.
Verified by ObscureIQ Intelligence
19/100Breach Risk Index
4Data Value
25Market Recency
512dSince Breach
Breach Intelligence Summary
Entity: Anti Public · Actor: Unknown · Sources: 3 references
Attack: Credential Stuffing
Profile: Breach Compilation · Aggregated stolen credentials and password pairs · Combo list used for credential stuffing · Global
Timeline: Breach (2016-12-16) · Indexed (Dec 01, 2024) · Year (2016)
Exposure: 1.1B records · 2 fields: Email Address, Password
Status: Reported
Executive Summary
The Anti Public Combo List was not a breach of a single company but a massive aggregation of stolen credentials compiled from dozens of prior incidents, including breaches at Adobe, Dropbox, LinkedIn, and Yahoo. Assembled and circulated by unknown actors in late 2016, the list contained approximately 458 million unique email addresses, many paired with multiple passwords harvested from different sources. It spread rapidly across hacker forums and dark web marketplaces, making it freely accessible to virtually anyone with malicious intent. The data exposed consisted of email addresses and their associated passwords. Because many people reuse the same password across multiple accounts, a single leaked credential pair can unlock banking portals, email inboxes, social media accounts, and workplace systems simultaneously. The Anti Public list was purpose-built for credential stuffing, an attack method where automated tools test stolen email-password combinations against login pages at scale, often processing millions of attempts per hour. No single organization faced regulatory action tied specifically to this compilation, since it drew from many separate incidents rather than one identifiable source. Have I Been Pwned, the widely used breach notification service, indexed the dataset so individuals could check their own exposure. For affected users, the practical risk remains active today: any account where a listed password is still in use is vulnerable to automated takeover. Changing reused passwords and enabling two-factor authentication are the most effective steps to reduce that risk.
ObscureIQ assessment: Extremely high risk of account takeover across multiple services due to password reuse. Enables large-scale automated attacks and identity compromise.
Breach Impact
The breach impact was severe because Anti Public turned previously scattered compromised credentials into an immediately operational attack dataset. Have I Been Pwned says the list contained about 458 million unique email addresses, many paired with multiple passwords from different incidents, and that it was broadly circulated for credential stuffing. That made it highly effective for automated account takeover, password reuse exploitation, spam targeting, and follow-on compromise across unrelated services.
About Anti Public
Anti Public is the name attached to a massive credential compilation and combo-list ecosystem built around aggregating email and password pairs from many prior breaches into a single reusable corpus for validation, resale, and automated abuse.
Why They Hold Your Data
Credential compilations aggregate login pairs from numerous breaches, creating centralized datasets optimized for automated abuse.
Recent Developments
Anti Public is best understood as an early landmark in the industrialization of combo lists rather than as an ongoing organization with a normal corporate lifecycle. Public reporting and later coverage of credential-stuffing markets show how the model it represented evolved into a broader combolist economy, where massive reused credential sets became a routine input for automated account testing and takeover campaigns.
Data Points Exposed
2 verified field types
Email Address
Password Critical
Field names are shown in full for clarity and search visibility. Canonical machine keys are emitted only in this page’s structured data.
Exploitation & Downstream Threats
Threat Activity:Critical
Primary downstream threats:
- Credential stuffing against reused passwords across other platforms
- Targeted phishing campaigns using exposed email addresses
Threat vectors:
- Phishing, credential stuffing & account takeover
- Credential stuffing & account takeover
Recommended Actions
If you believe your information may be included:
Change Reused Passwords
Update this account and anywhere you reused the password; use a manager.
Enable MFA Everywhere
Turn on multi-factor authentication on email first, then financial accounts.
Report & Recover
If you spot misuse, start an official recovery plan and report fraud.
Frequently Asked Questions
What happened in the Anti Public breach?▾
The Anti Public Combo List was not a breach of a single company but a massive aggregation of stolen credentials compiled from dozens of prior incidents, including breaches at Adobe, Dropbox, LinkedIn, and Yahoo. Assembled and circulated by unknown actors in late 2016, the list contained…
What data was exposed?▾
Verified fields include Email Address, Password.
What should I do if I was affected?▾
Change reused passwords, enable MFA, and (if identity or financial data is involved) freeze your credit and monitor your accounts.
Sources & References
Every claim on this page is traceable. This breach draws on:
Breach Index
Breach Index
Have I Been Pwned
ObscureIQ Intelligence
ObscureIQ proprietary analysis
Protect Yourself
Check If You're Affected
Enter your email to check whether your data appears in this breach. We’ll send a 6-digit code to confirm it’s your address.
Get Free Breach Alerts
Be the first to know when new breaches are disclosed. Free forever — confirm your email with a 6-digit code.
High-Risk? Get an Exposure Audit
Executives, public figures, and high-visibility operators can receive tailored exposure intelligence and hardening guidance.
Request Consultation