SoundCloud hit by network compromise
Incident
Summary
Hide ▲
Show ▼
SoundCloud confirmed a breach that exposed personal and contact data from 29.8 million user accounts, making the incident a major compromise of the audio streaming platform's systems. The event matters because attackers harvested account information at scale and later tried to extort the company while harassing users, employees, and partners. SoundCloud said financial data and password data were not accessed.
Related Happenings
Over a dozen companies data exposed after SaaS integration provider Snowflake breach
Data Leak
First: 07.04.2026 22:39
Last: 07.04.2026 22:39
Sources 1
About this happening:
A stolen-token attack from a **SaaS integration provider breach** has led to data theft claims affecting **over a dozen companies**, creating immediate exposure and extortion risk...
Over a dozen companies data exposed after SaaS integration provider Snowflake breach
Data LeakAbout this happening: A stolen-token attack from a **SaaS integration provider breach** has led to data theft claims affecting **over a dozen companies**, creating immediate exposure and extortion risk...
Crunchyroll hit by network compromise
Incident
First: 23.03.2026 21:21
Last: 23.03.2026 21:21
Sources 1
About this happening:
Crunchyroll is investigating a **breach** that allegedly exposed support systems and user data, putting about **6.8 million** people at risk. The claimed intrusion involved a **su...
Crunchyroll hit by network compromise
IncidentAbout this happening: Crunchyroll is investigating a **breach** that allegedly exposed support systems and user data, putting about **6.8 million** people at risk. The claimed intrusion involved a **su...
Aura hit by network compromise
Incident
First: 19.03.2026 00:56
Last: 19.03.2026 00:56
Sources 1
About this happening:
**Aura** confirmed a **voice-phishing breach** that gave an unauthorized party access to customer records, exposing data tied to **20,000 current** and **15,000 former customers**...
Aura hit by network compromise
IncidentAbout this happening: **Aura** confirmed a **voice-phishing breach** that gave an unauthorized party access to customer records, exposing data tied to **20,000 current** and **15,000 former customers**...
Aura customer data exposed after Aura breach
Data Leak
First: 19.03.2026 00:56
Last: 19.03.2026 00:56
Sources 1
About this happening:
Aura confirmed a **data leak** that exposed nearly **900,000 customer records**, creating privacy and phishing risk for affected customers. The exposed set included **names**, **e...
Aura customer data exposed after Aura breach
Data LeakAbout this happening: Aura confirmed a **data leak** that exposed nearly **900,000 customer records**, creating privacy and phishing risk for affected customers. The exposed set included **names**, **e...
Odido hit by network compromise
Incident
First: 12.02.2026 20:18
Last: 12.02.2026 20:18
Sources 1
About this happening:
**Odido** said a **cyberattack** exposed personal data from its **customer contact system**, affecting **6.2 million customers** after unauthorized access was detected on the week...
Odido hit by network compromise
IncidentAbout this happening: **Odido** said a **cyberattack** exposed personal data from its **customer contact system**, affecting **6.2 million customers** after unauthorized access was detected on the week...
Latest development: 24.02.2026 13:40
ShinyHunters claimed responsibility for breaching Dutch telecommunications provider Odido, added the company to its dark web leak site, and said it had stolen nearly 21 million records. The gang also claimed the stolen material includes internal corporate data and plaintext passwords, while Odido denied that passwords, call details, social security numbers, or billing data are involved.
Timeline
-
27.01.2026 14:25 2 articles · 4mo ago
SoundCloud confirms unauthorized activity on ancillary service dashboard
Initial DisclosureSoundCloud confirmed unauthorized activity involving an ancillary service dashboard after users reported access problems and 403 "Forbidden" errors over VPN, and the company activated incident response procedures while investigating limited data exposure.
Show sources
- Have I Been Pwned: SoundCloud data breach impacts 29.8 million accounts — www.bleepingcomputer.com — 27.01.2026 14:25
- SoundCloud confirms breach after member data stolen, VPN access disrupted — www.bleepingcomputer.com — 16.12.2025 02:38
-
27.01.2026 14:25 1 articles · 4mo ago
SoundCloud identifies ShinyHunters and extortion tactics
Attribution UpdateSoundCloud later confirmed that the ShinyHunters extortion gang was responsible for the compromise and that the threat actors made demands and used email flooding tactics to harass SoundCloud users, employees, and partners.
Show sources
- Have I Been Pwned: SoundCloud data breach impacts 29.8 million accounts — www.bleepingcomputer.com — 27.01.2026 14:25
-
27.01.2026 14:25 2 articles · 4mo ago
Have I Been Pwned reports 29.8 million SoundCloud accounts affected
Victim Impact UpdateHave I Been Pwned reported that the SoundCloud breach affected 29.8 million accounts and that the harvested data included email addresses, geographic locations, names, usernames, avatars, follower and following counts, and, in some cases, a user's country.
Show sources
- Have I Been Pwned: SoundCloud data breach impacts 29.8 million accounts — www.bleepingcomputer.com — 27.01.2026 14:25
- Have I Been Pwned: SoundCloud data breach impacts 29.8 million accounts — www.bleepingcomputer.com — 27.01.2026 14:25