A hooded figure looking at OnlyFans dashboard in a computer monitor
A hacker is selling a 340M OnlyFans database, but the seller says old leaks and public data were used to link creators and subscribers to real identities.
OnlyFans users may be facing one of the largest identity-exposure scares yet tied to the platform.
Hackread found a hacker selling a whopping 340 million-record OnlyFans database on a cybercrime forum for 0.313 BTC, or about $76,000. The database includes creator and subscriber details, raising fears that users’ real identities could be linked to their accounts.
Behind the megahack claim lies a more revealing problem: recycled breach data.
The seller, using the alias “Euphoric_Reply_5727,” advertised the database as a massive collection of OnlyFans-linked records, with entries said to include:
However, the sample records reviewed by Hackread were less definitive. They appeared in a flat, text-based format, with incomplete entries, blank fields, and placeholder values such as “None.” Some details looked like public profile metrics, not necessarily information pulled from inside OnlyFans systems.
There were still enough matches to make the listing worth taking seriously. Several usernames and linked details matched public OnlyFans profiles, including 10 UIDs tied to real usernames. But the associated emails were not verified, and the alleged payment-card details remain unconfirmed.
Additionally, Cybernews researchers found only 10 sample records attached to the forum post. “Based on the sample alone, we cannot confirm the true size of the data,” its researchers said, though they warned that exposed emails could still help attackers profile users or target them with phishing.
After Hackread contacted the person behind the listing on Telegram, the story changed.
“We didn’t breach or hack OnlyFans,” the seller told Hackread. “We used existing breaches and leaks databases and matched with users of the OnlyFans platform.”
Public sources and data from other platforms, including X, Instagram, and Spotify, were also cited as part of the matching process.
On a platform like OnlyFans, the most damaging exposure is not always a leaked password. It is identification.
A username may look harmless until it is matched with an email address, phone number, or linked social profile. From there, it can lead back to a real person, a workplace, or another account someone expected to keep separate.
No password is needed for that kind of damage. Private activity can become material for doxxing, impersonation, account takeover attempts, extortion, or harassment that follow users off the platform.
Microsoft is warning Windows users about YellowKey, a zero-day that may bypass BitLocker protections.
Liz Ticong is a staff writer for eWeek and TechRepublic focused on AI, cybersecurity, enterprise software, and data. She has more than 10 years of editorial experience as a technology industry writer, combining reporting, product research, and hands-on software testing in her coverage. Her work has been published on Datamation, Enterprise Networking Planet, and TechnologyAdvice.com. She writes technology news, software reviews, product comparisons, and buyer’s guides for business and IT readers.
