Back To Breaches

PayHere

In late March 2022, the Sri Lankan payment gateway PayHere suffered a data breach that exposed more than 65GB of payment records including over 1.5M unique email addresses. The data also included IP and physical addresses, names, phone numbers, purchase histories and partially obfuscated credit card data (card type, first 6 and last 4 digits plus expiry date). A month later, PayHere published a blog on the incident titled Ensuring Integrity on PayHere Cybersecurity Incident.

Domain: payhere.lk
Breach Count: 1,580,249
Breach Date: March 27, 2022
Added: May 2, 2022

Verified: True
Fabricated: False
Events: 0
Source: HaveIBeenPwned

Data types: Email addresses IP addresses Names Phone numbers Physical addresses Purchases Partial credit card data

Timeline

payhere.lk March 27, 2022

PayHere suffered from a data breach.

payhere.lk May 2, 2022

The breach PayHere was added to the database.

Check your email for data breaches

PayHere

Timeline