LmCast :: Stay tuned in

Have I Been Pwned: SoundCloud data breach impacts 29.8 million accounts

Recorded: Jan. 27, 2026, 4 p.m.

Original Summarized

Have I Been Pwned: SoundCloud data breach impacts 29.8 million accounts

News

Featured
Latest

New ClickFix attacks abuse Windows App-V scripts to push malware

Microsoft patches actively exploited Office zero-day vulnerability

Nearly 800,000 Telnet servers exposed to remote attacks

Cloudflare misconfiguration behind recent BGP route leak

OpenAI's ChatGPT ad costs are on par with live NFL broadcasts

Fortinet blocks exploited FortiCloud SSO zero day until patch is ready

Chinese Mustang Panda hackers deploy infostealers via CoolClient backdoor

WinRAR path traversal flaw still exploited by numerous hackers

Tutorials

Latest
Popular

How to access the Dark Web using the Tor Browser

How to enable Kernel-mode Hardware-enforced Stack Protection in Windows 11

How to use the Windows Registry Editor

How to backup and restore the Windows Registry

How to start Windows in Safe Mode

How to remove a Trojan, Virus, Worm, or other Malware

How to show hidden files in Windows 7

How to see hidden files in Windows

Webinars
Downloads

Latest
Most Downloaded

Qualys BrowserCheck

STOPDecrypter

AuroraDecrypter

FilesLockerDecrypter

AdwCleaner

ComboFix

RKill

Junkware Removal Tool

Deals

Categories

eLearning

IT Certification Courses

Gear + Gadgets

Security

VPNs

Popular

Best VPNs

How to change IP address

Access the dark web safely

Best VPN for YouTube

Forums
More

Virus Removal Guides
Startup Database
Uninstall Database
Glossary
Send us a Tip!
Welcome Guide

HomeNewsSecurityHave I Been Pwned: SoundCloud data breach impacts 29.8 million accounts

Have I Been Pwned: SoundCloud data breach impacts 29.8 million accounts

By Sergiu Gatlan

January 27, 2026
07:25 AM
2

Hackers have stolen the personal and contact information belonging to over 29.8 million SoundCloud user accounts after breaching the audio streaming platform's systems.
SoundCloud was founded in 2007 as an artist-first platform that now provides access to over 400 million tracks from more than 40 million artists worldwide.
The company confirmed the breach on December 15, following widespread reports from users who were unable to access SoundCloud and saw 403 "Forbidden" errors when connecting via VPN.

SoundCloud told BleepingComputer at the time that it had activated its incident response procedures after detecting unauthorized activity involving an ancillary service dashboard.
"We understand that a purported threat actor group accessed certain limited data that we hold," SoundCloud said. "We have completed an investigation into the data that was impacted, and no sensitive data (such as financial or password data) has been accessed. The data involved consisted only of email addresses and information already visible on public SoundCloud profiles."
While SoundCloud didn't provide further details regarding the incident, BleepingComputer learned that the breach affected 20% of all SoundCloud users, roughly 28 million accounts based on publicly reported user figures (SoundCloud later published a security notice confirming the information provided by BleepingComputer's sources).
After the breach, BleepingComputer also learned that the ShinyHunters extortion gang was responsible for the attack, with sources saying that the threat group was also attempting to extort SoundCloud. This was confirmed by SoundCloud in a January 15 update, which said the threat actors had "made demands and deployed email flooding tactics to harass users, employees, and partners."
Although SoundCloud has yet to share how many users' data was stolen, data breach notification service Have I Been Pwned revealed the extent of the breach on Monday, reporting that it affected 29.8 million accounts whose email addresses, geographic locations, names, usernames, and profile statistics were harvested in the incident.
"In December 2025, SoundCloud announced it had discovered unauthorised activity on its platform. The incident allowed an attacker to map publicly available SoundCloud profile data to email addresses for approximately 20% of its users," said data breach notification service Have I Been Pwned.
"The impacted data included 30M unique email addresses, names, usernames, avatars, follower and following counts and, in some cases, the user's country. The attackers later attempted to extort SoundCloud before publicly releasing the data the following month."
BleepingComputer reached out to SoundCloud again today with questions about the December incident, but a response was not immediately available.
Last week, ShinyHunters also claimed responsibility for a wave of ongoing voice phishing attacks targeting single sign-on (SSO) accounts at Okta, Microsoft, and Google, which could enable attackers to breach corporate SaaS platforms and steal data for extortion.

7 Security Best Practices for MCP
As MCP (Model Context Protocol) becomes the standard for connecting LLMs to tools and data, security teams are moving fast to keep these new services safe.
This free cheat sheet outlines 7 best practices you can start using today.
Download Now

Related Articles:
SoundCloud confirms breach after member data stolen, VPN access disruptedNike investigates data breach after extortion gang leaks filesMonroe University says 2024 data breach affects 320,000 peopleBreachForums hacking forum database leaked, exposing 324,000 accountsUS broadband provider Brightspeed investigates breach claims

Data Breach
Extortion
Have I Been Pwned
Security Breach
ShinyHunters
SoundCloud

Sergiu Gatlan
Sergiu is a news reporter who has covered the latest cybersecurity and technology developments for over a decade. Email or Twitter DMs for tips.

Previous Article
Next Article

Comments

KuraBee - 11 hours ago

 
 

"The data involved consisted only of email addresses and information already visible on public SoundCloud profiles". So why is this breaking news? :)

b1k3rdude - 8 hours ago

 
 

Welp, people might want to change their credentials. And currently they cant.

Post a Comment Community Rules

You need to login in order to post a comment
Not a member yet? Register Now

You may also like:

Popular Stories

Microsoft patches actively exploited Office zero-day vulnerability

Microsoft investigates Windows 11 boot failures after January updates

Microsoft releases emergency OOB update to fix Outlook freezes

Sponsor Posts

Is your data already on a leak site? Monitor your exposure threats for free.

Discover how phishing kits are sold and deployed. Download the full research report.

Exposure Management Index: Insights From 3,000+ Teams. Get The Report.

Overdue a password health-check? Audit your Active Directory for free

Get a free shadow AI inventory today

  Upcoming Webinar

Follow us:

Main Sections

News
Webinars
VPN Buyer Guides
SysAdmin Software Guides
Downloads
Virus Removal Guides
Tutorials
Startup Database
Uninstall Database
Glossary

Community

Forums
Forum Rules
Chat

Useful Resources

Welcome Guide
Sitemap

Company

About BleepingComputer
Contact Us
Send us a Tip!
Advertising
Write for BleepingComputer
Social & Feeds
Changelog

Terms of Use - Privacy Policy - Ethics Statement - Affiliate Disclosure

Copyright @ 2003 - 2026 Bleeping Computer® LLC - All Rights Reserved

Login

Username

Password

Remember Me

Sign in anonymously

Sign in with Twitter

Not a member yet? Register Now


Reporter

Help us understand the problem. What is going on with this comment?

Spam

Abusive or Harmful

Inappropriate content

Strong language

Other

Read our posting guidelinese to learn what content is prohibited.

Submitting...
SUBMIT

This BleepingComputer article details a significant data breach impacting SoundCloud, exposing the personal information of approximately 29.8 million users. The breach, initially detected in December 2025, was perpetrated by the threat actor group ShinyHunters, who gained unauthorized access to SoundCloud’s ancillary service dashboard. This access allowed them to map publicly available user profile data – including email addresses, geographic locations, names, usernames, follower/following counts, and profile statistics – to 30 million unique email addresses. Following the initial breach, ShinyHunters attempted extortion tactics targeting SoundCloud, employing email flooding to harass employees and partners. The Have I Been Pwned service confirmed the extent of the breach, highlighting the vulnerability of users’ data due to publicly accessible information on SoundCloud profiles. The incident underscores the risk associated with publicly available data and the potential for threat actors to exploit this information for malicious purposes, like extortion. While SoundCloud initially faced disruption to VPN access, the full scope of the data compromise was subsequently revealed, necessitating user scrutiny and potential password changes. The article highlights the importance of security awareness and vigilance among users and the need for platforms to maintain robust security measures to protect user data from unauthorized access. The ShinyHunters group’s subsequent extortion attempts further amplify the seriousness of the breach and the potential impact on affected individuals and the platform itself.