Dubsmash
  • Total Records161,549,213
  • Unique Emails160,233,098
  • Unique Email Providers1,282,638
  • Unique Usernames159,051,146
  • Unique First Names16,360,861

Dubsmash Data Breach: What Happened in December 2018?

Dubsmash, a popular video messaging app known for letting users create and share short videos with audio overlays, suffered a major data breach in December 2018. Over 161 million user accounts were affected—making this one of the largest breaches of its kind. The stolen data included usernames, email addresses, hashed passwords, first and last names, country location, languages spoken, and other account details. In the aftermath, the breached data was posted for sale on dark web marketplaces in early 2019 and later became widely available through broader data trading circles. This incident highlighted growing concerns about personal data security for social and entertainment platforms worldwide.

How Many Users Were Affected?

The Dubsmash breach compromised a staggering 161,549,214 records. For a service with a vibrant international user base, this meant that a significant portion of their community had their account details exposed.

What Data Was Exposed in the Dubsmash Breach?

Impacted Dubsmash users had several types of information leaked, including:

  • Email addresses
  • Usernames
  • Hashed passwords
  • First and last names
  • Country of residence
  • Languages spoken

This combination gave attackers potential clues to identities and login credentials even if passwords were not easily recoverable.

Timeline: When Did the Dubsmash Breach Occur?

The breach took place in December 2018. By early 2019, news emerged that the stolen records had been listed for sale on black market forums, bringing wider attention to the incident. Over time, the data circulated more broadly among cybercriminal communities.

How Was the Dubsmash Data Leaked?

Although the details about the method used to access Dubsmash’s infrastructure remain limited, the stolen information was bundled and advertised with data from several other notable breaches. It was offered for sale as part of a large database dump, drawing interest from those seeking to acquire mass account credentials.

Frequently Asked Questions about the 2018 Dubsmash Data Breach

What happened in the Dubsmash data breach?

In December 2018, Dubsmash's user data was accessed and stolen by attackers, who took over 161 million records containing emails, usernames, hashed passwords, names, and profile information. The exposure was first made public when the records appeared for sale online in early 2019.

How many users were affected by the Dubsmash breach?

The breach involved 161,549,214 user records, making it one of the largest social app data breaches of its time.

What personal information was leaked in the Dubsmash breach?

Affected users had email addresses, usernames, hashed passwords, first and last names, country, and spoken languages leaked in the breach.

How can I check if I'm in the Dubsmash breach?

You can check if your information was part of the Dubsmash breach by utilizing the DeHashed search engine.