Hacker Lists 340M OnlyFans User Records for Sale
OnlyFans users may be facing one of the largest identity-exposure scares yet tied to the platform.
Hackread found a hacker selling a whopping 340 million-record OnlyFans database on a cybercrime forum for 0.313 BTC, or about $76,000. The database includes creator and subscriber details, raising fears that users’ real identities could be linked to their accounts.
Behind the megahack claim lies a more revealing problem: recycled breach data.
A closer look complicates claims
The seller, using the alias “Euphoric_Reply_5727,” advertised the database as a massive collection of OnlyFans-linked records, with entries said to include:
- Usernames and names
- Email addresses and phone numbers
- Join dates
- Follower and like counts
- Uploaded content statistics
- Account types
- Linked social profiles
- A “card” field described as the last four digits of a payment card
However, the sample records reviewed by Hackread were less definitive. They appeared in a flat, text-based format, with incomplete entries, blank fields, and placeholder values such as “None.” Some details looked like public profile metrics, not necessarily information pulled from inside OnlyFans systems.
There were still enough matches to make the listing worth taking seriously. Several usernames and linked details matched public OnlyFans profiles, including 10 UIDs tied to real usernames. But the associated emails were not verified, and the alleged payment-card details remain unconfirmed.
Additionally, Cybernews researchers found only 10 sample records attached to the forum post. “Based on the sample alone, we cannot confirm the true size of the data,” its researchers said, though they warned that exposed emails could still help attackers profile users or target them with phishing.
Old leaks, new threat
After Hackread contacted the person behind the listing on Telegram, the story changed.
“We didn’t breach or hack OnlyFans,” the seller told Hackread. “We used existing breaches and leaks databases and matched with users of the OnlyFans platform.”
Public sources and data from other platforms, including X, Instagram, and Spotify, were also cited as part of the matching process.
Must-read security coverage
Advertisement
When usernames lead back to real identities
On a platform like OnlyFans, the most damaging exposure is not always a leaked password. It is identification.
A username may look harmless until it is matched with an email address, phone number, or linked social profile. From there, it can lead back to a real person, a workplace, or another account someone expected to keep separate.
No password is needed for that kind of damage. Private activity can become material for doxxing, impersonation, account takeover attempts, extortion, or harassment that follow users off the platform.
Microsoft is warning Windows users about YellowKey, a zero-day that may bypass BitLocker protections.
About Author
