Skip to content
Tech News
← Back to articles

Crunchyroll probes breach after hacker claims to steal 6.8M users' data

2026-03-23 | original
read original get Cybersecurity Privacy Software → more articles
Why This Matters

The Crunchyroll data breach highlights the ongoing cybersecurity risks faced by digital entertainment platforms, emphasizing the importance of robust security measures to protect user data. For consumers, this incident underscores the need for vigilance over personal information shared online, especially with third-party support services. For the tech industry, it serves as a reminder to strengthen access controls and monitor supply chain vulnerabilities to prevent similar breaches.

Key Takeaways

Popular anime streaming platform Crunchyroll is investigating a breach after hackers claimed to have stolen personal information for approximately 6.8 million people.

"We are aware of recent claims and are currently working closely with leading cyber security experts to investigate the matter," Crunchyroll told BleepingComputer.

This statement comes after a threat actor contacted BleepingComputer last Thursday and claimed they breached Crunchyroll on March 12th at 9 PM EST, after gaining access to the Okta SSO account of a support agent working for Crunchyroll.

This support agent is allegedly an employee of the Telus International business process outsourcing (BPO) company, who has access to Crunchyroll support tickets. The threat actors claimed to have used malware to infect the agent's computer and gain access to their credentials.

From screenshots shared with BleepingComputer, these credentials gave access to various Crunchyroll applications, including Zendesk, Wizer, MaestroQA, Mixpanel, Google Workspace Mail, Jiro Service Management, and Slack.

Using this access, the attackers say they downloaded 8 million support ticket records from Crunchyroll's Zendesk instance. Of these records, there are allegedly 6.8 million unique email addresses.

Samples of the support tickets seen by BleepingComputer and then deleted contain a wide variety of information, including the Crunchyroll user's name, login name, email address, IP address, general geographic location, and the contents of the support tickets.

While other reports on the incident claim that credit card information was exposed, BleepingComputer has confirmed that credit card details were exposed only when the customer shared them in the support ticket.

For the most part, this included only basic information, such as the last four digits or expiration dates, and only a few contained full card numbers, according to the threat actor.

The support tickets seen by BleepingComputer all reference Telus, supporting the threat actor's claim that they compromised a BPO employee.

... continue reading

Explore topics: crunchyroll okta telus international zendesk malware
Related:
Crunchyroll Investigating Claims of Cyberattack
FBI says Iranian hackers are using Telegram to steal data in malware attacks
Banish Distractions From Your Workflow With This $16 Tool
You may hate Android’s new 24-hour sideloading rule, but I love it
Did You Know You Can Watch Free Anime Every Day? Here's Where to Find It

© 2026 GoKawiil

About | Editorial Policy | Contact