Vimeo data breach exposes personal information of 119,000 people
Vimeo data breach exposes personal information of 119,000 people
Publish Date: 2026-05-05 09:03:46
Source Domain: www.bleepingcomputer.com
Summary of Article:
The ShinyHunters extortion gang successfully hacked the video platform Vimeo in April, stealing the personal information of over 119,000 individuals without disrupting Vimeo’s operations. Vimeo disclosed the breach on April 27, noting that while technical data, video titles, and metadata were accessed, no user login credentials or payment card information were compromised. After failing to extort the company, ShinyHunters leaked 106GB of stolen data in retaliation. Although Vimeo swiftly disabled compromised credentials and removed Anodot’s integration to prevent further access, they still had to publicly acknowledge the breach. The ShinyHunters group has previously stolen data from numerous companies and remains active in similar cybercrimes, including a recent phishing campaign targeting SaaS applications through compromised single sign-on accounts.
Key Points:
- ShinyHunters stole personal data belonging to over 119,000 people by hacking Vimeo.
- Vimeo’s disclosure revealed the breach targeted data containing video metadata and some email addresses.
- No user login credentials or financial information were exposed.
- After breach detection, Vimeo disabled Anodot credentials and sought third-party security expertise.
- ShinyHunters leaked the compromised data after unsuccessful extortion attempts.
