Pornhub hack: 200 million user data stolen by ShinyHunters

Pornhub hack: 200 million user data stolen by ShinyHunters

Briefly

"Hacker group ShinyHunters has stolen data from over 200 million premium customers of porn website Pornhub. The criminals are demanding a ransom in Bitcoin to prevent the publication of search history, among other things. The hack took place at Mixpanel, which measures user behavior. Hackers from ShinyHunters claim to have stolen 94 gigabytes of data from 201 million customers. According to BleepingComputer, the stolen data includes customer details, email addresses, locations, video URLs, video names, keywords, and viewing times."

"Pornhub confirmed the theft but emphasises that only premium customers have been affected. The company claims that it has not been hacked itself. Passwords and financial data are said not to have been stolen. The attack targeted Mixpanel, an analytics platform that Pornhub works with. "We demand a ransom payment in Bitcoin to prevent the publication of data and to delete the data," the group told Reuters news agency. Three former Pornhub customers confirmed the authenticity of the stolen data to Reuters."

"ShinyHunters distinguishes itself from other criminal hackers by exclusively breaking in for data theft, without using ransomware. The group has been operating since 2020 and has a long list of well-known victims, including Microsoft, Ticketmaster, Jaguar, and Louis Vuitton. In the Netherlands, the group became particularly well known for the Ticketmaster hack in 2024, in which data from hundreds of millions of customers was stolen. If companies refuse to pay, Shinyhunters sells"