According to Resecurity, a significant portion of the stolen data was found on XSS, a prominent underground forum. Resecurity’s analysis indicates that multiple breaches are not publicly disclosed by the affected organizations, leaving victims unaware and unable to replace their compromised documents.

Source: Infosecurity Magazine – Information Security & IT Security