Critical

SoundCloud

In December 2025, SoundCloud announced it had discovered unauthorised activity on its platform . The incident allowed an attacker to map publicly available SoundCloud profile data to email addresses for approximately 20% of its users. The impacted data included 30M unique email addresses, names, use...

Exposed data: Email Addresses Usernames Names
Accounts Exposed 29,815,722
1K 100K 10M 1B+

Overview

In December 2025, SoundCloud detected unauthorized activity on its systems. An attacker was able to link publicly available user profile information—such as usernames and follower counts—to the private email addresses associated with those accounts. This breach impacted data for nearly 30 million users. After SoundCloud did not comply with an extortion attempt, the attackers publicly released the stolen data the following month. If you have or had a SoundCloud account, your personal information may now be circulating online.

What Was Exposed

The stolen dataset is significant because it connects different pieces of your digital identity. The core exposed elements include:

  • Email Addresses: Your primary account identifier.
  • Usernames & Names: Your public or display name on the platform.
  • Profile Data: This includes avatars, follower/following counts, and, for some users, their country.

The critical risk lies in the linkage. While some data was public on profiles, the breach attached it directly to your private email, creating a more valuable package for misuse.

Potential Impact

Having your email, name, and username exposed together significantly increases your risk of targeted cyber attacks.

  • Phishing & Spam: You will likely see a sharp increase in sophisticated phishing emails. Attackers can use your real name and reference “SoundCloud” to make scam messages appear legitimate, tricking you into revealing passwords or financial data.
  • Credential Stuffing: Cybercriminals will use the exposed email addresses and passwords (if you reused your SoundCloud password elsewhere) to attempt to log into your other online accounts, such as banking, social media, or shopping sites.
  • Identity Theft & Social Engineering: The combined information provides a foundation for identity theft. Scammers can use these personal details to impersonate you or make their attempts to manipulate you or your contacts seem more credible.

Recommendations

Take these steps immediately to secure your accounts and personal information.

  1. Change Your SoundCloud Password: Immediately update to a strong, unique password on SoundCloud. Do not reuse this password on any other website or service.
  2. Enable Two-Factor Authentication (2FA): Activate 2FA on your SoundCloud account and any other important account (especially email, banking, and social media) that offers it. This adds a critical second layer of security.
  3. Beware of Targeted Phishing: Be extremely cautious with all emails, even those that appear to come from SoundCloud or other trusted services. Do not click on links or open attachments in unsolicited messages. Verify communications by going directly to the official website.
  4. Audit Your Accounts: Review your other online accounts, especially those using the same email address exposed here. Ensure you are using unique passwords for each.
  5. Consider a Password Manager: Using a password manager is the most effective way to create and manage strong, unique passwords for every account you own.

How to Check If You’re Affected

The breach has been verified and added to the website Have I Been Pwned, a free resource that tracks data breaches. To check if your information was involved:

  1. Go to https://haveibeenpwned.com
  2. Enter the email address you used for your SoundCloud account.
  3. The site will show you if that email address appears in the SoundCloud breach and any other known breaches.

If you are affected, follow the recommendations above. Even if you are not listed, it remains a best practice to use unique passwords and enable 2FA on all critical accounts.