New breach: WP Sandbox identified their service being used to host a OneDrive phishing attack. They took the site offline, contacted all 858 victims of the attack then self-submitted the data to @haveibeenpwned. 44% of addresses were already in https://haveibeenpwned.com/