Pornhub breach exposes millions of Premium Users’ private data

Pornhub, one of the world's largest adult entertainment platforms, has confirmed a major security incident that exposed the highly sensitive activity data of its Premium users. The Western-based hacking group ShinyHunters, notorious for high-profile extortion, claimed responsibility for the breach and is demanding a Bitcoin ransom to prevent the public leak of the stolen data.

The Stolen Data: A Blackmail Goldmine

ShinyHunters claims to have stolen approximately 94 gigabytes (GB) of data containing more than 200 million analytics records tied to Pornhub Premium activity. This data is considered extremely sensitive, creating a significant risk of blackmail, outing, and reputational harm for the affected users.

The exposed information reportedly includes:

• Premium Member Email Addresses

• Geographic Location Data

• Detailed Viewing Habits: Video URLs, video names, keywords used in searches, and viewing times.

Pornhub issued a statement confirming that an "unauthorized party" gained access to a "limited set of analytics events for certain users" through a third-party analytics service. The company, however, emphasized that no financial data was exposed.

Passwords, payment details, and other financial information were confirmed to be secure, as they were not stored on the compromised analytics platform.

Pornhub stated that they stopped working with Mixpanel in 2021, suggesting the exposed analytics data is historical and may not reflect recent activity for the majority of users.

Third-party supply chain attack

The breach highlights the critical security risk posed by third-party vendors. The attack was reportedly carried out by ShinyHunters targeting Mixpanel via a sophisticated SMS phishing (smishing) campaign in November 2025.

While Mixpanel acknowledged a security incident in November 2025 and notified affected clients (including OpenAI), the company disputes that the stolen Pornhub data originated from their system during that specific incident. So, either the data was compromised earlier through other means or the story goes deeper.

In response to the extortion attempt, Pornhub has launched a full investigation and is coordinating with law enforcement and external cybersecurity experts. The company has begun notifying affected Premium users about the incident and the potential risks involved.