Home > Security > Security News

Almost 120,000 Vimeo Accounts Exposed in ShinyHunters Data Breach

Published
Written by:
Lore Apostol
Lore Apostol
Cybersecurity Writer
Breach Tracking - Analysis - Metadata - Third-Party
Summarize with:
ChatGPT logo ChatGPT Claude.ai logo Claude.ai Google AI logo Google AI Grok logo Grok Perplexity logo Perplexity
Google logo Add as preferred source on Google
Key Takeaways
  • Extortion campaign listing: In April 2026, ShinyHunters listed Vimeo on its portal, publishing hundreds of gigabytes of enterprise data.
  • Third-party compromise: Vimeo attributed the data exposure to a security breach at its third-party analytics vendor, Anodot.
  • Data exposure scope: The leak exposed almost 120,000 email addresses but contained no user credentials, payment information, or video content.

In April 2026, the ShinyHunters extortion group targeted Vimeo as part of its ongoing "pay or leak" campaign, listing the video hosting platform on their extortion portal and subsequently publishing hundreds of gigabytes of data. 

Breach notification platform Have I Been Pwned (HIBP) added the leaked data on May 5, 2026, confirming that almost 119,200 unique email addresses were involved in the April 2026 breach.

Scope of the Data Exposure

The HIBP dataset predominantly consists of video titles, technical data, and platform metadata. However, the exposure also impacts user data – email addresses, with some records accompanied by user names. 

ShinyHunters lists Vimeo | Source: Whiteintel on X
ShinyHunters lists Vimeo | Source: Whiteintel on X

Following the data publication, Vimeo issued a statement clarifying the boundaries of the security incident. The company investigated the incident and attributed the data exposure directly to a security breach at Anodot, a third-party analytics vendor. 

ShinyHunters claimed it compromised Snowflake and BigQuery instances, extracting significant volumes of information from the vendor's infrastructure rather than Vimeo's primary internal systems. 

Operational Security Impact

Vimeo stated the compromised information does not include any actual Vimeo video content. Furthermore, the exposure did not compromise valid user login credentials or any financial payment card information. 

Organizations utilizing third-party analytics vendors must continue auditing supply chain access to secure operational metadata and user contact information.

ShinyHunters last month released 78.6 million internal analytics records, reportedly from a confirmed Rockstar Games data breach linked to Anodot and also listed a Udemy data breach. Other breaches claimed by the threat actor last month include Hallmark and Hallmark+ and a Cisco breach linked to a Trivy compromise.

Add a Comment
Related
Ransomware Attack
LAPSUS$ Claims Vodafone UK Breach in New Alleged Cyberattack
Udemy Data Breach Results in 1.4 Million Accounts Leaked by ShinyHunters
Cyberattack on German Democratic Socialist Party Die Linke, Claimed by Qilin Ransomware
Germany Reveals the Name of Alleged REvil Ransomware, GandCrab Leader Daniil Maksimovich Shchukin (UNKN)
Former Employee Pleads Guilty to Insider Hacking and Extortion of US Industrial Company
Ex-Data Analyst Convicted in $2.5M Brightly Software Extortion Scheme
Most Popular
Hackers Mass-Exploit Critical cPanel Vulnerability May Impact 550,000+ Potentially Vulnerable Servers
Amazon SES Phishing and BEC Attacks Leverage Leaked AWS IAM Keys
NymVPN Introduces ‘Pay as You Go’ Access With No Accounts or Subscriptions
NymVPN Introduces ‘Pay as You Go’ Access With No Accounts or Subscriptions
Phishing Campaign Impersonating the U.S. Social Security Administration Targets 80+ Organizations
How an Attack Hid in Encrypted Traffic and Evaded Traditional Security
Ask the Experts Featured
Ask the Experts by TechNadu
Hackers Mass-Exploit Critical cPanel Vulnerability May Impact 550,000+ Potentially Vulnerable Servers
Amazon SES Phishing and BEC Attacks Leverage Leaked AWS IAM Keys
NymVPN Introduces ‘Pay as You Go’ Access With No Accounts or Subscriptions
Phishing Campaign Impersonating the U.S. Social Security Administration Targets 80+ Organizations
How an Attack Hid in Encrypted Traffic and Evaded Traditional Security
Ask the Experts by TechNadu

Most Popular
Hackers Mass-Exploit Critical cPanel Vulnerability May Impact 550,000+ Potentially Vulnerable Servers
Amazon SES Phishing and BEC Attacks Leverage Leaked AWS IAM Keys
NymVPN Introduces ‘Pay as You Go’ Access With No Accounts or Subscriptions
NymVPN Introduces ‘Pay as You Go’ Access With No Accounts or Subscriptions
Phishing Campaign Impersonating the U.S. Social Security Administration Targets 80+ Organizations
How an Attack Hid in Encrypted Traffic and Evaded Traditional Security
Ask the Experts Featured
Ask the Experts by TechNadu
Hackers Mass-Exploit Critical cPanel Vulnerability May Impact 550,000+ Potentially Vulnerable Servers
Amazon SES Phishing and BEC Attacks Leverage Leaked AWS IAM Keys
NymVPN Introduces ‘Pay as You Go’ Access With No Accounts or Subscriptions
Phishing Campaign Impersonating the U.S. Social Security Administration Targets 80+ Organizations
How an Attack Hid in Encrypted Traffic and Evaded Traditional Security
Ask the Experts by TechNadu

TechNadu keeps you informed with the latest in cybersecurity, VPNs, and technology. From expert guides to in-depth reviews, we provide the knowledge you need to stay secure and connected in the digital world.

© 2026 TechNadu. All Rights Reserved. TechNadu is a part of Leaprove Media LLP.

Close lightbox
Facebook
Twitter
Linkedin
Reddit
Email
Copy Link
For a better user experience we recommend using a more modern browser. We support the latest version of the following browsers: For a better user experience we recommend using the latest version of the following browsers: