Skip to content
Tech News
← Back to articles

Vimeo data breach exposes personal information of 119,000 people

2026-05-05 | original
read original get Vimeo Data Breach Report → more articles
Why This Matters

The Vimeo data breach highlights the ongoing risks of cyberattacks targeting large digital platforms, emphasizing the importance of robust security measures to protect user data and maintain consumer trust. Despite Vimeo's efforts to contain the incident, the leak underscores the potential for cybercriminal groups to exploit vulnerabilities for extortion and data theft, impacting both industry reputation and user privacy.

Key Takeaways

The ShinyHunters extortion gang stole personal information belonging to over 119,000 people after hacking the Vimeo online video platform in April, according to data breach notification service Have I Been Pwned.

Vimeo is a video hosting and streaming platform publicly traded on the Nasdaq stock market, with over 300 million registered users and over 1,100 employees, and reported revenues of $417 million for FY2024.

The company disclosed on April 27 that customer and user data had been accessed without authorization following a recent breach at Anodot, a data anomaly detection company.

"Our initial findings suggest that the databases accessed primarily contain technical data, video titles and metadata, and, in some cases, customer email addresses," Vimeo said.

However, the company said the attack didn't cause any disruptions and that the threat actors didn't gain access to affected individuals' credentials or financial information. Vimeo also disabled all Anodot credentials after detecting the breach and removed the Anodot integration with its systems to cut off the attackers' access.

"The data accessed does not include Vimeo video content, valid user login credentials, or payment card information. Vimeo user and customer login credentials are secure. This incident did not cause any disruption to our systems or service," it added. "Upon learning of the incident, we promptly disabled all Anodot credentials, removed the Anodot integration with Vimeo systems, and engaged third-party security experts to assist with the investigation. We have also notified law enforcement."

After Vimeo's disclosure, the ShinyHunters cybercrime group leaked a 106GB archive of stolen documents on its dark web data leak site after failing to extort the company.

"Your Snowflake and Bigquery instances data was compromised thanks to Anodot.com," the extortion gang said. "The company failed to reach an agreement with us despite our incredible patience, all the chances and offers we made."

Vimeo entry on ShinyHunters leak site (BleepingComputer)

​While Vimeo has yet to disclose the total number of individuals whose information was stolen in the incident, data breach notification service Have I Been Pwned analyzed the stolen data and reported that the breach exposed the email addresses and (in some cases) names of 119,200 people.

... continue reading

Explore topics: vimeo anodot shinyhunters data breach nasdaq
Related:
Coinbase cuts headcount by 14% citing AI acceleration. The shares are gaining
Geothermal startup Fervo Energy to raise up to $1.3B in IPO
Instructure confirms data breach, ShinyHunters claims attack
Ransomware Is Getting Uglier As Cybercriminals Fake Leaks and Skip Encryption Entirely
The S&P 500 and Nasdaq kept their record rallies going. Here are 3 key takeaways

© 2026 GoKawiil

About | Editorial Policy | Contact