"In an email posted on , Substack CEO, Christ Best, said the company became aware of the breach on February 3, which involved an "unauthorized third party to access limited user data without permission." While internal metadata was also shared in the hack, Best said that credit card numbers and other financial details were not. No passwords were obtained either."
""We are conducting a full investigation, and are taking steps to improve our systems and processes to prevent this type of issue from happening in the future," he said. Best added that there is no evidence that any of the stolen data is being "misused," but advised the affected account holders to be wary of suspicious emails or text messages they may receive."
Substack reported a security breach that occurred in October 2025, with the company becoming aware of the incident on February 3. The breach involved unauthorized access that scraped users' email addresses, phone numbers, and internal metadata. Credit card numbers, other financial details, and passwords were not accessed. Security vulnerabilities implicated in the incident have been addressed and a full investigation is underway, accompanied by planned system and process improvements. There is no evidence that the stolen data is being misused. An alleged database of 697,313 Substack records was posted on the BreachForums hacking forum, and the total affected account count was not disclosed.
Read at Engadget
Unable to calculate read time
Collection
[
|
...
]