Hackers claim to be selling hundreds of millions of records that allegedly contain data from OnlyFans creators and fans, including their activity metrics and social media profiles. If confirmed, the massive OnlyFans data leak could reveal the true identities of the platform’s users.
Hackers claim to be selling hundreds of millions of records that allegedly contain data from OnlyFans creators and fans, including their activity metrics and social media profiles. If confirmed, the massive OnlyFans data leak could reveal the true identities of the platform’s users.
A report about the alleged OnlyFans data leak appeared on a popular hacking forum where attackers often share stolen information. According to the publication, the attackers are selling 340 million records obtained by parsing OnlyFans' internal databases, Cybernews reports .
“The ad offers exclusive access to an alleged dump of OnlyFans’ internal database, containing approximately 350 million user records. The dataset covers both fan and creator accounts, revealing a wide range of personal information and detailed account activity metrics,” the hackers claim.
According to the attackers, the alleged data leak contains users' personal information, including:
usernames;
registration dates;
email addresses;
number of subscribers;
number of likes;
number of photos;
number of videos;
number of broadcasts;
payment card details;
related profiles.
While the large-scale OnlyFans data breach has not been confirmed at the time of writing, the Cybernews research team examined a sample of the data that the attackers added to a post on a hacking forum. The team found only 10 examples of records attached to the message.
The data provided included user IDs, nicknames, email addresses, and login profiles. Other fields in the sample, such as phone numbers, account statuses, and linked accounts, were found to be empty.
The team noted that the data in the sample appears to be dated around August 2025, which may indicate that the attackers collected outdated information.
“Based on this sample alone, we cannot confirm the true extent of the leak. However, this fragment indicates that individuals whose data was exposed could be targets for phishing attacks,” the researchers explained. “However, the emails themselves can serve as a sensitive point of intelligence. Attackers can use this information to cross-reference information from other adult content sites to build a profile of the exposed individuals.”
Interestingly, the attackers reportedly deny that they hacked OnlyFans itself. According to Hackread, the attackers claim to have assembled this database using information from previous OnlyFans leaks, open sources, and other data dumps.
Cross-referencing information from different sources that may seem unrelated is exactly what makes it dangerous to have your data leaked online. People often use one or more email addresses for multiple accounts. In the event of a data breach, one set of information can be a starting point for comparing email addresses and learning more about a person.
For example, users may be more privacy conscious and hide their personal information when creating an account on OnlyFans, but this is much easier with services like Netflix or Spotify. However, if they used the same email address for both platforms, attackers could easily link them.
“If it is a compilation, the data can be used for intelligence and profiling. For example, attackers can investigate whether users’ email addresses are repeated across multiple websites, or whether any additional sensitive information has been leaked. In addition, publishing the contact details of content authors could lead to spam and harassment of them,” the researchers explained.
