A significant data leak allegedly containing over 200 million user records from X, the social media platform formerly known as Twitter. The breach was discovered on a clear web forum, a known hub for the sharing of databases, leaks, and cracks.
According to the threat actor responsible for the leak, the breach involves a staggering 400GB of data on over 2.8 billion X users, dating back to January 2025. The perpetrator claims to have taken this action due to a perceived lack of awareness from X and the public regarding βthe largest social media breach ever.β They further stated, βI tried contacting X via several methods with no response,β indicating an attempt to notify the platform prior to public disclosure.
The leaked data is reported to be a compilation of records from a January 2023 leak, believed to be a public data scrape, cross-referenced and appended with new data. The resulting 34GB .CSV file allegedly contains 201,186,753 entries of X user data.
Safety Detectivesβ Cybersecurity Teamβs preliminary review of a sample of the data suggests its authenticity. βWe reviewed the information corresponding to 100 users in the list, and we found that it matched what was shown on Twitter,β the team stated. While a considerable number of emails were verified as valid, their ownership by the listed accounts remains unconfirmed.
This exposure poses substantial risks to affected users, including:
Phishing attacks: Cybercriminals may exploit the leaked information to craft convincing phishing emails or messages, masquerading as X or other legitimate entities, to deceive individuals into divulging sensitive information or clicking on malicious links.Targeted scams: With access to user activity details, scammers can tailor fraudulent schemes to appear more legitimate, increasing their chances of success.Social engineering attacks: The leaked data can be leveraged in social engineering attacks, where cybercriminals manipulate individuals into revealing confidential information or performing actions that compromise security.Safety Detectives advises users who suspect their information may have been compromised to take the following precautions:
Beware of Phishing Attempts: Exercise caution with unsolicited communications and avoid clicking on links or downloading attachments from unknown sources.Update Privacy Settings: Review and adjust privacy settings on social media accounts and other online platforms to limit public visibility of personal information.Beware of Social Engineering Attacks: Be vigilant about social engineering tactics, such as phishing and scams, and verify the authenticity of unexpected communications, especially those requesting personal or financial data.Report Any Unusual Events: Notify X of any fraudulent activity or suspicious communications related to the incident and refrain from sharing information with unknown contacts or unverified sources.Clearweb forums play a crucial role in the cybersecurity landscape, serving as platforms for hackers to coordinate attacks, share information, and discuss data breaches. It is emphasized that these reports are for informational and preventive purposes and should not be interpreted as allegations of fault or negligence.