// UNCLASSIFIED // CLEARED FOR PUBLIC RELEASE //
FILE BRC-hibpDTG 0600Z
ColdRecon / Breach Radar / SoundCloud
Breach Record

SoundCloud

DISCLOSED 2025-12-15 · STOLEN CREDS · 29,815,722 RECORDS EXPOSED

In December 2025, SoundCloud announced it had discovered unauthorised activity on its platform. The incident allowed an attacker to map publicly available SoundCloud profile data to email addresses for approximately 20% of its users. The impacted data included 30M unique email addresses, names, usernames, avatars, follower and following counts and, in some cases, the user’s...

The record

What we know

Disclosed
2025-12-15
Attack vector
Stolen Creds
Records exposed
29,815,722
Domain
soundcloud.com
Data classes exposed
AvatarsEmail addressesGeographic locationsNamesProfile statisticsUsernames
Sources

Cited reporting

Similar vector · recent

Other stolen creds breaches on file

This page is the permanent ColdRecon entry for the SoundCloud disclosure. It updates if new public reporting emerges. All tracked breaches →

SoundCloud just lived through this. Your next prospect doesn't have to.

ColdRecon turns every disclosed breach into a daily intelligence brief from the seller's seat — normalized to the factors that move a deal, written in the Handler's voice. Request clearance and the first lands tomorrow at 0600.

Request Clearance →