How Do I Know If I Was in a Data Breach? (Plus How to Claim)
🕑 2 min read·317 words
By Timo Bakker · July 3, 2026 · 6 min read
If you have had an email account for more than a few years, you have been in at least one data breach. If you have had accounts with major US companies (banks, retailers, healthcare providers), you have been in several. Here is how to check specifically and file the class action claims.
Free tools to check
- HaveIBeenPwned.com — enter your email or phone number to see which breaches it has been in. Genuinely free, run by a security researcher, no scam.
- IdentityTheft.gov — FTC-run site with breach lookups and recovery steps.
- Your credit report — free at AnnualCreditReport.com. Look for unfamiliar accounts, which can indicate breach-enabled identity theft.
Major recent US breaches you may have been in
- Equifax (2017) — 147M Americans. Settlement paid; small residual window still open.
- T-Mobile (2021) — 76M records.
- LinkedIn (2021) — 700M profiles scraped.
- Yahoo (2013-14) — 3B accounts.
- Change Healthcare (2024) — ~100M patient records. Settlement pending.
- National Public Data (2024) — 2.9B records including SSNs. Multiple settlements pending.
- Snowflake customer breaches (2024) — AT&T, Ticketmaster, and others affected via Snowflake credentials.
How to file class action claims for breaches
Every settled data breach class action has a claim website. Our directory lists all currently-open ones. Typical claim structure:
- No-proof tier: $50-100 flat payment for anyone whose data was in the breach.
- Documented losses tier: $500-25,000 for people who can show actual fraud losses.
- Credit monitoring: 2-3 years free (regardless of monetary claim).
See our full data breach settlements guide for detailed filing help.