B2B USA Businesses 2017 Data Breach
ObscureIQ Breach Intelligence
Low SeverityAggregated / marketing data
B2B USA Businesses Corporate Contact List Breach: 105M Employee Records Exposed
Compiled U.S. corporate contact spam list'
Verified by ObscureIQ Intelligence
19/100Breach Risk Index
10Data Value
10Market Recency
3205dSince Breach
Breach Intelligence Summary
Entity: B2B USA Businesses · Actor: Unknown · Sources: 4 references
Attack: Unknown
Profile: Data Broker / Marketing Exposure · B2B contact data aggregation and spam targeting · Corporate contact spam list corpus · USA
Timeline: Breach (2017-07-18) · Indexed (Jul 18, 2017) · Year (2017)
Exposure: 105.1M records · 6 fields: Email Address, Employer, Full Name, Job Information, Phone Number, Physical Address
Status: Confirmed
Executive Summary
A large spam and marketing dataset known as "B2B USA Businesses" was discovered online in 2017, exposing over 105 million records tied to professionals across corporate America. The list was not associated with a consumer-facing company or service. It functioned as a compiled targeting corpus, organizing business contact information by employer for outreach and marketing purposes. No attacker or specific breach method has been identified. The exposed data included names, email addresses, job titles, employers, work phone numbers, and physical addresses. This combination is particularly sensitive because it links identity to workplace role and contact details in a single record. That bundled profile is directly useful for crafting convincing phishing emails, impersonating colleagues or vendors, and building detailed maps of corporate org structures. No widely reported legal action or regulatory response is associated with this dataset. Because the records were compiled from third-party sources rather than stolen from a single organization, affected individuals may not receive any direct notification. People whose information appeared in this list face an elevated risk of targeted phishing, business email compromise attempts, and unsolicited contact from bad actors who can convincingly reference their employer, title, and workplace details.
ObscureIQ assessment: High risk of spearphishing, executive targeting, and business relationship mapping. The dataset is directly useful for outreach-based fraud and impersonation.
Breach Impact
The breach impact came from turning more than 105 million U.S. corporate contact records into a ready-made targeting dataset. Public breach tracking says the list included names, employers, job titles, work phone numbers, physical addresses, and email addresses, making it highly useful for phishing, business email compromise pretexting, spam operations, executive targeting, and large-scale B2B identity mapping.
About B2B USA Businesses
B2B USA Businesses was a large spam and marketing contact list focused on professionals in corporate America, not a normal operating company or user-facing service. The dataset organized business identities by employer and bundled work-related contact and role information into a reusable targeting corpus.
Why They Hold Your Data
Corporate contact databases aggregate business names, employee identities, job titles, emails, phone numbers, and company-linked records for sales and lead-generation use.
Recent Developments
B2B USA Businesses did not have a normal corporate lifecycle because it was not a visible standalone business with a public operating identity. Since surfacing in 2017, it has been treated publicly as a legacy spam-list style breach object rather than as an active company that later changed hands, rebranded, or shut down.
Data Points Exposed
6 verified field types
Email Address
Employer
Full Name High
Job Information
Phone Number
Physical Address High
Field names are shown in full for clarity and search visibility. Canonical machine keys are emitted only in this page’s structured data.
Exploitation & Downstream Threats
Threat Activity:High
Primary downstream threats:
- SIM swap attacks where phone numbers are present
- Targeted phishing campaigns using exposed email addresses
- Doxxing risk from physical address exposure
- Employment-based social engineering using job and employer data
Threat vectors:
- Phishing, credential stuffing & account takeover
- Business Email Compromise seeding
- Name-based social engineering
- Vishing & authority impersonation
- SIM swapping, vishing & SMS phishing
- Physical stalking, mail fraud & identity verification
Recommended Actions
If you believe your information may be included:
Enable MFA Everywhere
Turn on multi-factor authentication on email first, then financial accounts.
Report & Recover
If you spot misuse, start an official recovery plan and report fraud.
Frequently Asked Questions
What happened in the B2B USA Businesses breach?▾
A large spam and marketing dataset known as "B2B USA Businesses" was discovered online in 2017, exposing over 105 million records tied to professionals across corporate America. The list was not associated with a consumer-facing company or service. It functioned as a compiled targeting corpus,…
What data was exposed?▾
Verified fields include Email Address, Employer, Full Name, Job Information, Phone Number, Physical Address.
What should I do if I was affected?▾
Change reused passwords, enable MFA, and (if identity or financial data is involved) freeze your credit and monitor your accounts.
Sources & References
Every claim on this page is traceable. This breach draws on:
Breach Index
Cross-source
Hacked-Emails
Cross-source
Keeper
ObscureIQ Intelligence
ObscureIQ proprietary analysis
Protect Yourself
Check If You're Affected
Enter your email to check whether your data appears in this breach. We’ll send a 6-digit code to confirm it’s your address.
Get Free Breach Alerts
Be the first to know when new breaches are disclosed. Free forever — confirm your email with a 6-digit code.
High-Risk? Get an Exposure Audit
Executives, public figures, and high-visibility operators can receive tailored exposure intelligence and hardening guidance.
Request Consultation