SoundCloud
  • Total Records29,892,459
  • Unique Emails29,906,986
  • Unique Usernames50,813,426
  • Unique First Names14,159,060
  • Unique Addresses361,278

SoundCloud’s December 2025 Data Breach: What Happened and What Was Exposed?

In December 2025, SoundCloud, one of the world's most popular audio streaming platforms, suffered a significant data breach affecting nearly 30 million user records. The incident occurred after attackers gained access to an ancillary service dashboard, giving them a window into user profile details and email addresses. While passwords and financial information remained protected, the breach still impacted about 20% of the platform’s user base. The event triggered noticeable disruption, with temporary outages as SoundCloud acted swiftly to contain the breach and notify those affected. Users were urged to reset their passwords—primarily as a precaution against the risk of reused credentials elsewhere.

What Data Was Compromised?

The breach did not expose financial information or user passwords, offering some relief. However, attackers did access a wide range of account details, including:

  • Email addresses
  • Usernames and full names
  • Public profile information, such as profile URLs and social media links
  • City and country information associated with profiles
  • Full birthdates for users who provided them

This type of information can be used in phishing attempts or for identifying users across different platforms, especially when email addresses and real names are paired with social handles.

Timeline of the Breach

The breach was detected and contained in early December 2025. During the course of the incident, SoundCloud instituted temporary outages to prevent further unauthorized access. In the days following the breach, the company notified affected users and provided guidance on account safety, including recommendations to reset passwords if those passwords had been reused on other services.

Who Was Behind the Breach?

As of now, SoundCloud has not publicly attributed the breach to any specific hacking group or individual. The method used appears to have involved exploiting access to a secondary services platform dashboard, rather than attacking SoundCloud’s core infrastructure. Security teams have since reviewed and reinforced access controls around such connected services.

FAQ About the SoundCloud December 2025 Data Breach

How many SoundCloud users were affected by the December 2025 breach?

SoundCloud confirmed that about 29,892,460 accounts—around 20% of its users—were impacted by this breach.

What personal information was leaked in the SoundCloud December 2025 breach?

The exposed information included email addresses, full names, usernames, profile URLs, public social media links, city and country, and full birthdates when provided. No financial or password data was accessed.

What happened during SoundCloud’s 2025 data breach?

Attackers accessed an ancillary service dashboard, allowing them visibility into user email addresses and public profile information. The breach led to temporary platform disruptions and prompted SoundCloud to recommend precautionary password resets.

Was my password or payment data stolen in the SoundCloud 2025 breach?

No, SoundCloud reported that password and payment data were not accessed during this incident. The breach was limited to email addresses and user profile details.

How can I check if I'm in the SoundCloud December 2025 breach?

You can check if your information was part of the SoundCloud December 2025 breach by utilizing the DeHashed search engine.