: If you reused the password found in this leak on any other platform (exchanges, email, etc.), change it immediately and enable Two-Factor Authentication (2FA) .
Reports from HEROIC Cybersecurity indicate a major resurgence of this specific 2021 data on dark web forums and Telegram channels as recently as late 2024 and 2025. Attackers use this older data to:
: Security researcher Troy Hunt added this breach to Have I Been Pwned in April 2021. Exodus.com database leaked 20 April 2021.txt
: The leak is frequently used by threat actors for credential stuffing (trying these passwords on other sites) and targeted phishing campaigns. Recent Resurgence (2024–2026)
: Primarily Email Addresses and Password Hashes (SHA-1) . : If you reused the password found in
Target users with or "cracked" software that specifically searches for local Exodus wallet files to drain funds. Recommended Actions
: Never digitize your 12-word recovery phrase. Storing it in cloud notes (like LastPass or Evernote) has led to significant losses for users whose credentials were leaked. : The leak is frequently used by threat
Send (phishing) that claim your wallet is suspended to trick you into entering your 12-word recovery phrase.