SafetyDetectives’ Cybersecurity Team discovered a forum post on the clear web where a threat actor published a .CSV file allegedly containing over 200 million records from X users.
The leak follows a reported January 2025 breach in which 2.8 billion records were allegedly compromised. The threat actor claims to have cross-referenced this dataset with a 2023 leak, resulting in a refined dataset of 201,186,753 total entries.
The leaked dataset includes user IDs, screen names, names, locations, email addresses, account statistics (followers, friends, statuses, etc.), account verification status, and last status creation date. SafetyDetectives’ team reviewed a sample of the data and found that user details matched publicly available information on X. Additionally, verified email addresses were found within the dataset, though their ownership could not be confirmed.
The exposure of this data presents significant security and privacy risks for affected users. Cybercriminals can craft convincing phishing emails using leaked email addresses and personal information. Scammers may tailor fraudulent schemes based on user activity and account details. Cybercriminals can use the leaked information to manipulate victims into revealing sensitive data or taking harmful actions.
If you suspect your data has been compromised, consider taking the following precautions. Avoid clicking on links or downloading attachments from unknown sources. Adjust social media privacy settings to limit public exposure of personal data. Verify unexpected communications before sharing any sensitive information. Report fraudulent activities or suspicious messages to X.
This breach underscores the ongoing risks associated with large-scale data leaks. Affected users should remain vigilant and take proactive steps to enhance their cybersecurity defenses. By following expert recommendations, individuals can mitigate the potential impacts of this data exposure and protect their personal information from cyber threats.
InfotechLead.com News Desk
