SoundCloud Breach Impacts 20% of Users After Dashboard Hack
Unauthorized access to a service dashboard resulted in the theft of limited data for an estimated 28 million users. The company also experienced subsequent denial-of-service attacks causing disruption.
Records Affected
28.0M
Industry
Technology
Incident Details
What Happened
SoundCloud detected unauthorized activity within an ancillary service dashboard, which led to a data breach affecting a significant portion of its user base. Attackers exfiltrated what the company described as 'limited data' on approximately 20% of its users. Following the initial intrusion, SoundCloud was targeted by multiple denial-of-service (DoS) attacks, which temporarily disabled the web version of the music-streaming platform.
Impact
Based on an estimated 140 million total users, this breach potentially impacted 28 million individuals. While the specific types of stolen data were not detailed, it was described as 'limited.' The subsequent DoS attacks caused service interruptions for all users, and security changes made in response to the breach led to connectivity issues for some customers using VPN services.
Response
SoundCloud stated it detected and contained the unauthorized activity in its dashboard. The company's immediate response to secure its systems had unintended consequences for some users, particularly those on VPNs. The firm acknowledged the incidents and worked to restore service stability after the DoS attacks.
END_OF_INCIDENT_REPORT
CASE_ID: 6Y26IBJ2TYI