Overview
- The live hub launched today with a 2025 tally of 794 identifiable incidents exposing over 300 million records, rising to 1,571 incidents and hundreds of billions of records when aggregated datasets are counted.
- Proton says the primary figures exclude combo lists and infostealer dumps, focusing on single‑source breaches tied to specific organizations.
- Small and medium‑sized companies account for the majority of observed cases, with SMBs making up roughly 70.5% of breaches and retail, technology, and media among the most targeted sectors.
- The most commonly exposed data includes email addresses (100% of cases), names (90%), contact information (72%), passwords (49%), and sensitive records such as government or health data (34%).
- Proton plans near‑real‑time updates using automated crawling, curated feeds, and human analysts via partner Constella, a faster approach that observers note could flag some false positives compared with more conservative services like Have I Been Pwned; early reports also noted the site initially appeared only in German.