SoundCloud Data Breach: 28 Million Users' Info Compromised

SoundCloud confirmed today that it suffered a significant data breach, affecting an estimated 20% of its user base — roughly 28 million accounts, based on company disclosures and reporting. The data involved included email addresses and publicly visible profile information, which is enough to make users pause, even if it’s not the worst-case scenario.

If you noticed odd connection issues recently — especially 403 errors when accessing SoundCloud through a VPN — that wasn’t just you. Those hiccups were part of the cleanup. As SoundCloud moved to lock things down after detecting unauthorized activity, some security changes temporarily disrupted access.

What Exactly Was Exposed

According to SoundCloud, the compromised data mainly consisted of email addresses and profile details that were already public on the platform. The company has stated that no passwords, financial information, or highly sensitive credentials were confirmed to be accessed. That’s good news, but it’s not nothing.

How It Happened (As Far As We Know)

SoundCloud says the breach stemmed from unauthorized activity involving an ancillary service dashboard — basically a backend tool that wasn’t meant to be front and center, but ended up exposed. Once detected, the company activated its incident response process and brought in third-party security experts.

There have also been reports of attempted extortion tied to the incident, though SoundCloud hasn’t publicly named or confirmed any specific threat group.

Why Emails Still Matter

Email addresses and profile info don’t sound dramatic compared to leaked passwords or credit card numbers. But they’re exactly the kind of data phishing campaigns thrive on. A convincing email pretending to be a SoundCloud notification suddenly gets a lot more believable.

So even if your Spotify playlists are untouched and your bank account is fine, those digital breadcrumbs still have value — just in a quieter, more annoying way.

What SoundCloud Is Doing Now

SoundCloud says the unauthorized access has been contained and that immediate remediation steps are complete. That’s typically the point where companies draw a line under the incident and move forward.

For users, though, the takeaway is simple: inboxes just got a little more suspicious than they were yesterday. And right now, that’s the part people are paying the most attention to.