One Million Passports Leaked Online

One Million Passports Leaked Online

A database of almost a million passports from around the world was leaked online.

Note what happened. A high-value credential—a passport—was used in an ancillary low-value authentication system: ID verification for cannabis dispensaries. And it’s the low-value system that got hacked, putting the high-value credential at risk.

Tags: data collection, leaks, passports

Posted on June 26, 2026 at 7:03 AM • 2 Comments

Bill Dietrich • June 26, 2026 7:20 AM

I’m sure my passport is in this breach, but I haven’t been notified. Has anyone affected been notified ? This breach is 2 months old, I think.

Bob Dobbs • June 26, 2026 7:50 AM

I got a giggle out of CA reporting on CA’s data collection without consent in the linked article. Needed that, been a rough week XD

Leave a comment

Login

Name

Email

URL:

Remember personal info?

Fill in the blank: the name of this blog is Schneier on ___________ (required):

Allowed HTML <a href="URL"> • <em> <cite> <i> • <strong> <b> • <sub> <sup> • <ul> <ol> <li> • <blockquote> <pre> Markdown Extra syntax via https://michelf.ca/projects/php-markdown/extra/

Notify me of follow-up comments by email.

Notify me of new posts by email.