[throwaway834792]

Based on a large (over 50 results) domain search for a company I work for, the data I found was very old, circa 2014.

I know this because almost everyone in the domain search stopped working for the company on or after 2014. Everyone else has worked at the company since 2013 or earlier.

[eganist]

Heads up, found at least one match for 2019 from a dataset I'm working with.

[lawnchair_larry]

That doesn’t set an upper bound on when the breach happened, it sets a lower bound. Old email addresses aren’t deleted by whoever had them. It just means it contains data from at least 2014, up to and including 2019.

[koheripbal]

The email notification doesnt list the emails impacted. Do you need to rerun the full report to get the details?

[Nextgrid]

If you run the domain report manually on the HIBP website you get the actual email addresses involved.