"A data breach at SoundCloud that came to light in December 2025 is now becoming clearer. The data breach monitor Have I Been Pwned added the leaked dataset to its database this week, revealing the true extent of the impact. SoundCloud is a global audio platform where artists and listeners come together and where hundreds of millions of music and audio tracks are hosted."
"In mid-December, SoundCloud reported that it had detected unauthorized activity within its infrastructure. This happened after users encountered problems logging in and received error messages. The company then stated that the incident was related to a support service and that no sensitive data such as passwords or payment information had been compromised. Communication about the number of accounts affected remained limited."
Have I Been Pwned added the leaked SoundCloud dataset to its database and identified approximately 29.8 million affected accounts. The dataset contains email addresses paired with profile information including usernames, display names, avatars, follower counts, and in some instances users' countries. Some profile fields were publicly visible, but the association with email addresses increases risk of phishing and targeted misuse. SoundCloud detected unauthorized infrastructure activity in mid-December after login problems and error messages, linking the incident to a support service and stating that passwords and payment information were not compromised. The attack is attributed to ShinyHunters, who pursue extortion and attempted pressure via large-scale email campaigns.
Read at Techzine Global
Unable to calculate read time
Collection
[
|
...
]