Overview
- The hackers claim a 94GB cache containing about 201,211,943 records linking Premium members’ emails and locations to video metadata, activity types and timestamps.
- BleepingComputer reviewed samples of the dataset, and Reuters partially authenticated records with former customers who said their data was real but several years old.
- Pornhub says the incident involves a third-party analytics environment rather than its own systems, and that passwords, payment details and government IDs were not exposed.
- Mixpanel reported a Nov. 8 smishing incident but says it sees no indication the Pornhub data came from that event, citing last legitimate access in 2023 by a company account.
- Pornhub has notified affected users, engaged cybersecurity experts and authorities, and urged vigilance against phishing and potential sextortion as the probe continues.