SoundCloud Security Incident: Data Exposure Affects Millions of Users
Service outages, VPN disruptions, and a possible DDoS attack follow unauthorized access to SoundCloud systems
SoundCloud has confirmed a recent security incident that led to service disruptions, VPN access issues, and the exposure of user data. The audio streaming platform acknowledged that unauthorized access to an internal system resulted in email addresses and public profile information being exposed, potentially affecting a significant portion of its global user base.
The disclosure comes after days of user complaints reporting “403 Forbidden” errors, particularly when accessing SoundCloud through virtual private networks (VPNs). According to the company, these issues were linked to emergency security measures taken during the incident response.
Unauthorized Access Triggers SoundCloud Incident Response
SoundCloud stated that it detected suspicious activity involving an internal service dashboard used for operational purposes. Once identified, the company immediately launched its internal incident response procedures to contain the breach and protect its infrastructure.
In an official statement, SoundCloud said threat actors gained limited access to one of its internal systems. The company emphasized that its investigation is now complete and that the breach did not compromise sensitive information such as passwords, payment details, or login credentials.
The exposed data was reportedly limited to email addresses and information already visible on public SoundCloud profiles, reducing the immediate risk of account takeovers.
you may also like to read Digital Media Bill 2025 Reviewed by IT and Telecom
Up to 20% of SoundCloud Users Potentially Affected
Although SoundCloud has not confirmed an exact figure, sources familiar with the incident claim that approximately 20% of SoundCloud’s users may have been impacted. Based on publicly available user statistics, this could represent as many as 28 million accounts.
SoundCloud said it has successfully blocked all unauthorized access and believes there is no ongoing threat to its systems. However, the scale of the potential exposure has raised concerns among users and cybersecurity observers.
VPN Access Disruptions and Denial-of-Service Attacks
As part of its containment efforts, SoundCloud implemented configuration changes to secure its network. These measures unintentionally disrupted VPN access, preventing many users from connecting to the platform. The company acknowledged the issue but has not provided a clear timeline for when VPN compatibility will be fully restored.
In addition to the data exposure, SoundCloud confirmed it experienced denial-of-service (DoS) attacks that temporarily affected platform availability. While the company did not link these attacks to the original breach, it said they were mitigated as part of its broader security response.
you may also like to read Pakistani YouTube Creators Go Global
ShinyHunters Extortion Gang Linked to the Breach
SoundCloud has not officially identified the attackers, but reports suggest the ShinyHunters cybercrime group may be responsible. According to cybersecurity sources, the group allegedly obtained a user database and attempted to extort the company.
ShinyHunters is known for multiple high-profile data breaches in recent years. SoundCloud has declined to comment on the group’s involvement or any extortion demands.
you may also like to read SoundCloud Security Incident: Data Exposure Affects Millions of Users
What SoundCloud Users Should Do Now
While no passwords or financial data were exposed, cybersecurity experts warn that leaked email addresses can still be used in phishing and social engineering attacks. Users are advised to stay alert for suspicious emails, avoid clicking unknown links, and secure their email accounts with strong passwords and multi-factor authentication.
SoundCloud says it is working with external cybersecurity experts to enhance monitoring, strengthen access controls, and prevent future incidents.
0 Comments